Ingress-nginx `path` sanitization can be bypassed with `log_format` directive.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: kubernetes

Published: 2023-10-25T19:18:45.982Z

Updated: 2024-08-03T01:55:46.045Z

Reserved: 2023-01-12T01:32:05.452Z

Link: CVE-2022-4886

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2023-10-25T20:15:09.790

Modified: 2024-03-07T17:15:09.470

Link: CVE-2022-4886

cve-icon Redhat

No data.