Exploit for CVE-2025-1974

April 27, 2025 invoker category_cve

Vulnerability Details

Basic Information

Title Exploit for CVE-2025-1974
Type githubexploit
Published 2025-04-27T05:07:01
Last Seen 2025-04-27T12:03:37
CVSS Score 9.8 (CRITICAL)

CVSS v3 Details

Attack Vector NETWORK
Attack Complexity LOW
Privileges Required NONE
User Interaction NONE
Scope UNCHANGED
Confidentiality Impact HIGH
Integrity Impact HIGH
Availability Impact HIGH

CVE Information

CVE IDs CVE-2025-1974, CVE-2025-24514, CVE-2025-1098, CVE-2025-1097
CWE
Bulletin Family exploit

Description

CVE-2025-1974 화이트햇 스쿨 3기 – [김소은 (@salt318)] (https://github.com/salt318/vulhub) 요약 쿠버네티스의 핵심 보안 메커니즘인 Ingress-NGINX Admission Controller의 결함으로 인해 발생 Ingress-NGINX Admission Controller는 인증 없이 네트워크에 노출됨 이로 인해 공격자가 악성 AdmissionReview 요청을 조작하여…

Impact Assessment

Base Score 9.8
Severity CRITICAL

View full CVE details

💭 Join the Security Discussion

🔒 Your email address will not be published. Required fields are marked *

⚠️ Please be respectful and constructive in your comments. Security discussions should remain professional.