CVE-2022-30535 – In versions 2.x before 2.3.0 and all versions of 1.x, An attacker authorized to create or …

Vuln ID: CVE-2022-30535

Published:  2022-08-04  18:15:09Z

Description: In versions 2.x before 2.3.0 and all versions of 1.x, An attacker authorized to create or update ingress objects can obtain the secrets available to the NGINX Ingress Controller. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.

Source: NVD.NIST.GOV