Primary

Context

ingress-nginx Validating Admission Controller Denial-of-Service Vulnerability

Vulnerability

Patched

A denial-of-service vulnerability has been identified in ingress-nginx versions prior to 1.13.7 and 1.14.3. The issue arises in the validating admission controller feature, where an attacker can send large requests that consume memory. This memory consumption may lead to the ingress-nginx controller pod being terminated or the node running out of memory.

Impact

Exploitation of this vulnerability can cause excessive memory usage, potentially leading to the ingress-nginx controller pod being killed or the node exhausting its memory resources.

Remediation

Users can upgrade to ingress-nginx versions 1.13.7, 1.14.3, or any later version to address this vulnerability. For upgrade instructions, refer to the 'Upgrading Ingress-nginx' documentation.

Added: Feb 3, 2026, 11:21 PM

Updated: Feb 3, 2026, 11:21 PM

Vulnerability Rating

Custom Algorithm

spread

6.4

impact

3.3

exploitability

6.8

remediation

7.7

relevance

2.7

threat

6.4

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

6.4

impact

3.3

exploitability

6.8

remediation

7.7

relevance

2.7

threat

6.4

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

ingress-nginx Validating Admission Controller Denial-of-Service Vulnerability

Vulnerability

Impact

Remediation

Affected Products

kubernetes-ingress-nginx

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating