HD Moore on Nostr: Jacob Sandum posted a detailed and well-written PoC for the IngressNightmare ...
Published at
2025-03-25 19:56:31Event JSON
{
"id": "f2c622951687367355625ca1d317d7edbc26b4c609a71c5239b364eb93d2d7fe",
"pubkey": "3c65f4528f1db02ae90cd1ce3c494daf425c18dc5d3e854fb9bf73a55fe3fcd3",
"created_at": 1742932591,
"kind": 1,
"tags": [
[
"imeta",
"url https://media.infosec.exchange/infosec.exchange/media_attachments/files/114/224/830/191/062/108/original/c94a55ad2517fad7.png",
"m image/png",
"dim 2112x1526",
"blurhash U25r70_3M_j]tRRjRjt74mfQogWB%gj[V@og"
],
[
"proxy",
"https://infosec.exchange/users/hdm/statuses/114224830288128182",
"activitypub"
]
],
"content": "Jacob Sandum posted a detailed and well-written PoC for the IngressNightmare (CVE-2025-1974 ) vulnerability found in the Kubernetes ingress-nginx Admission Controller by Wiz (Woogle!). If you are looking for a quick way to reproduce the issue or validate detection and mitigation, take a look:\nhttps://github.com/sandumjacob/IngressNightmare-POCs/blob/main/CVE-2025-1974/README.md\n\nhttps://media.infosec.exchange/infosec.exchange/media_attachments/files/114/224/830/191/062/108/original/c94a55ad2517fad7.png",
"sig": "ce07ce8912b4053ec0090fc1e9fb21b392fd674d15d15529285a3e8a475947513fa7fd62acb55722dd03622fa031dec33afbcb25df7d9660985f72562365a12a"
}
