CNNVD-202602-196 Information
Feb 03, 2026
cve
CNNVD ID
CNNVD-202602-196
Related CVE
- CNNVD Published: 2026-02-03
Description (Chinese)
Kubernetes ingress-nginx是云原生计算基金会(Cloud Native Computing Foundation)开源的Kubernetes 的入口控制器,使用NGINX作为反向代理和负载均衡器。 Kubernetes ingress-nginx存在安全漏洞,该漏洞源于验证准入控制器功能存在拒绝服务条件,可能导致内存消耗。
Description (English)
Kubernetes ingress-nginx is the entry control for Kubernetes, an open source of the Cloud Nature Computer Foundation, using NGINX as the reverse agent and load balancer. There is a security gap in Kubernetes ingress-nginx, which stems from the denial of conditions of service for the validation access controller function, which may lead to memory consumption.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
云原生计算基金会
Published
2026-02-03
Last Modified
2026-02-24
References
https://github.com/kubernetes/kubernetes/issues/136680
Patch
https://github.com/kubernetes/ingress-nginx/releases
Share on: