Miggo Logo
Miggo Vulnerability Database
CVE-2025-1097

CVE-2025-1097: ngress-nginx controller - configuration injection via unsanitized auth-tls-match-cn annotation

8.8

CVSS Score
3.1

Basic Information

CVE ID
CVE-2025-1097
GHSA ID
GHSA-823x-fv5p-h7hw
EPSS Score
0.92048%
CWE
CWE-15
Published
3/25/2025
Updated
3/25/2025
KEV Status
No
Technology
TechnologyGo

Technical Details

CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Package NameEcosystemVulnerable VersionsFirst Patched Version
k8s.io/ingress-nginxgo< 1.11.51.11.5
k8s.io/ingress-nginxgo>= 1.12.0-beta.0, < 1.12.11.12.1

Vulnerability Intelligence
Miggo AIMiggo AI

Miggo AIRoot Cause Analysis

The analysis focused on patches directly related to annotation processing and nginx configuration generation. The auth.Parse function is directly implicated due to its role in handling authentication annotations. Other functions related to nginx configuration rendering are considered potentially relevant due to their role in using annotation values.

Vulnerable functions

Only Mi**o us*rs **n s** t*is s**tion

WAF Protection Rules

WAF Rule

* s**urity issu* w*s *is*ov*r** in [in*r*ss-n*inx](*ttps://*it*u*.*om/ku**rn*t*s/in*r*ss-n*inx) w**r* t** `*ut*-tls-m*t**-*n` In*r*ss *nnot*tion **n ** us** to inj**t *on*i*ur*tion into n*inx. T*is **n l*** to *r*itr*ry *o** *x**ution in t** *ont*xt

Reasoning

T** *n*lysis *o*us** on p*t***s *ir**tly r*l*t** to *nnot*tion pro**ssin* *n* n*inx *on*i*ur*tion **n*r*tion. T** `*ut*.P*rs*` *un*tion is *ir**tly impli**t** *u* to its rol* in **n*lin* *ut**nti**tion *nnot*tions. Ot**r *un*tions r*l*t** to n*inx *o