{"id":"GHSA-f53h-mxv9-cp98","summary":"ingress-nginx comment-based nginx configuration injection","details":"A security issue was discovered in ingress-nginx where a combination of Ingress annotations can be used to inject configuration into nginx. This can lead to arbitrary code execution in the context of the ingress-nginx controller, and disclosure of Secrets accessible to the controller. (Note that in the default installation, the controller can access all Secrets cluster-wide.)","aliases":["BIT-nginx-ingress-controller-2026-4342","CVE-2026-4342","GO-2026-4796"],"modified":"2026-03-23T18:56:09.398085Z","published":"2026-03-20T00:31:28Z","database_specific":{"github_reviewed_at":"2026-03-20T17:26:08Z","severity":"HIGH","nvd_published_at":"2026-03-19T22:16:43Z","github_reviewed":true,"cwe_ids":["CWE-20"]},"references":[{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2026-4342"},{"type":"WEB","url":"https://github.com/kubernetes/kubernetes/issues/137893"},{"type":"WEB","url":"https://github.com/kubernetes/ingress-nginx/commit/5183b7d861377a9a2f6d2acaf44f8f6abd5cd0aa"},{"type":"PACKAGE","url":"https://github.com/kubernetes/ingress-nginx"},{"type":"WEB","url":"http://www.openwall.com/lists/oss-security/2026/03/19/9"}],"affected":[{"package":{"name":"k8s.io/ingress-nginx","ecosystem":"Go","purl":"pkg:golang/k8s.io/ingress-nginx"},"ranges":[{"type":"SEMVER","events":[{"introduced":"0"},{"fixed":"0.0.0-20260319175635-5183b7d86137"}]}],"database_specific":{"source":"https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2026/03/GHSA-f53h-mxv9-cp98/GHSA-f53h-mxv9-cp98.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}]}