{"vulnerability": "CVE-2023-5043", "sightings": [{"uuid": "7f4c9400-4eec-4739-8bbe-fc28ee233732", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-5043", "type": "seen", "source": "https://bsky.app/profile/ytroncal.bsky.social/post/3llbigus4d22z", "content": "", "creation_timestamp": "2025-03-26T09:38:34.194734Z"}, {"uuid": "9bcae472-402b-4c97-bdb5-e3b844872847", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-5043", "type": "seen", "source": "https://bsky.app/profile/redteamnews.bsky.social/post/3lladqtnvw52j", "content": "", "creation_timestamp": "2025-03-25T22:41:57.987387Z"}, {"uuid": "ee92842d-6117-408c-b247-ad0deb330927", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-5043", "type": "seen", "source": "MISP/f2f93f16-9318-44b1-9be3-2d3346ca540c", "content": "", "creation_timestamp": "2025-09-10T07:47:59.000000Z"}, {"uuid": "d6c3b760-74ff-430f-b6a0-8a960c634fd7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-5043", "type": "seen", "source": "https://bsky.app/profile/badtux.linuxtips.io/post/3llgootjr322b", "content": "", "creation_timestamp": "2025-03-28T11:13:42.903519Z"}, {"uuid": "31093b20-8a9d-4e58-b451-3ac6d2b94e99", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-5043", "type": "seen", "source": "https://bsky.app/profile/badtux.linuxtips.io/post/3llgos2mho22b", "content": "", "creation_timestamp": "2025-03-28T11:15:30.541236Z"}, {"uuid": "e899f37e-dfa5-430b-a4bd-baf8dd8fb3ae", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-5043", "type": "seen", "source": "https://bsky.app/profile/fidelissauro.bsky.social/post/3llgre5bluc2q", "content": "", "creation_timestamp": "2025-03-28T12:01:22.645349Z"}, {"uuid": "b9beb876-30e1-460b-b1eb-1a656446f3a2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-5043", "type": "seen", "source": "https://bsky.app/profile/linuxtips.io/post/3llgyhc435s2f", "content": "", "creation_timestamp": "2025-03-28T14:08:31.201699Z"}, {"uuid": "6eb37a2b-b564-4e22-a112-2f7c257e0031", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-5043", "type": "seen", "source": "https://t.me/arpsyndicate/710", "content": "#ExploitObserverAlert\n\nCVE-2023-5043\n\nDESCRIPTION: Exploit Observer has 2 entries related to CVE-2023-5043. Ingress nginx annotation injection causes arbitrary command execution.\n\nFIRST-EPSS: 0.002640000\nNVD-IS: 5.9\nNVD-ES: 2.8", "creation_timestamp": "2023-11-29T09:38:53.000000Z"}, {"uuid": "708db22b-bb7a-4fee-9411-8c032b73e3e1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-5043", "type": "seen", "source": "MISP/f2f93f16-9318-44b1-9be3-2d3346ca540c", "content": "", "creation_timestamp": "2025-08-10T18:27:45.000000Z"}, {"uuid": "82dd88a9-1077-4031-af3c-03d799272b81", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-5043", "type": "seen", "source": "https://t.me/KomunitiSiber/999", "content": "Urgent: New Security Flaws Discovered in NGINX Ingress Controller for Kubernetes\nhttps://thehackernews.com/2023/10/urgent-new-security-flaws-discovered-in.html\n\nThree unpatched high-severity security flaws have been disclosed in the\u00a0NGINX Ingress controller\u00a0for Kubernetes that could be weaponized by a threat actor to steal secret credentials from the cluster.\nThe vulnerabilities are as follows -\u00a0\n\nCVE-2022-4886\u00a0(CVSS score: 8.8) -\u00a0Ingress-nginx\u00a0path sanitization can be bypassed to obtain the credentials of the ingress-nginx controller\nCVE-2023-5043\u00a0(", "creation_timestamp": "2023-10-30T09:02:14.000000Z"}, {"uuid": "cdcc25b5-4df3-435f-8cb0-f99fc6853a90", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-5043", "type": "seen", "source": "Telegram/MCOtq6YNws1wIQDmkmW4fj5yPvTPQ5hjf1qfUTkU-awDNw", "content": "", "creation_timestamp": "2023-10-30T08:13:06.000000Z"}, {"uuid": "69051916-f66c-422b-a941-9036c0b76f1e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-50431", "type": "seen", "source": "https://t.me/ctinow/161259", "content": "https://ift.tt/0P3ZztD\nCVE-2023-50431 | Linux Kernel up to 6.6.5 habanalabs_ioctl.c sec_attest_info information disclosure", "creation_timestamp": "2024-01-01T10:31:28.000000Z"}, {"uuid": "b44564ca-0d3a-4108-8121-003927d75fe1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-50439", "type": "seen", "source": "https://t.me/ctinow/165725", "content": "https://ift.tt/Peb5UMx\nCVE-2023-50439 | PRIMX ZED/ZONECENTRAL/ZEDMAIL Project Name information disclosure", "creation_timestamp": "2024-01-10T12:11:08.000000Z"}, {"uuid": "58b5c7ca-795a-4097-a533-5957b07eb879", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-50430", "type": "seen", "source": "https://t.me/ctinow/161257", "content": "https://ift.tt/9tUKrGB\nCVE-2023-50430 | Goodix Fingerprint Device SDCP improper authentication", "creation_timestamp": "2024-01-01T10:31:25.000000Z"}, {"uuid": "fbb5fe35-5cff-4eb1-8fd7-2c82cd2270b5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-5043", "type": "seen", "source": "https://t.me/true_secator/5023", "content": "\u0412 \u043a\u043e\u043d\u0442\u0440\u043e\u043b\u043b\u0435\u0440\u0435 NGINX \u0434\u043b\u044f Kubernetes \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d\u044b \u0442\u0440\u0438 \u043d\u0435\u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u043d\u044b\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0432\u044b\u0441\u043e\u043a\u043e\u0439 \u0441\u0435\u0440\u044c\u0435\u0437\u043d\u043e\u0441\u0442\u0438, \u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a \u043c\u043e\u0436\u0435\u0442 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u044c \u0434\u043b\u044f \u043a\u0440\u0430\u0436\u0438 \u0441\u0435\u043a\u0440\u0435\u0442\u043d\u044b\u0445 \u0443\u0447\u0435\u0442\u043d\u044b\u0445 \u0434\u0430\u043d\u043d\u044b\u0445 \u0438\u0437 \u043a\u043b\u0430\u0441\u0442\u0435\u0440\u0430.\n\n\u0421\u0440\u0435\u0434\u0438 \u043d\u0438\u0445:\n- CVE-2022-4886\u00a0(\u043e\u0446\u0435\u043d\u043a\u0430 CVSS: 8,8): \u043e\u0431\u0445\u043e\u0434 \u043e\u0447\u0438\u0441\u0442\u043a\u0438 \u043f\u0443\u0442\u0438 Ingress-nginx\u00a0\u0434\u043b\u044f \u043f\u043e\u043b\u0443\u0447\u0435\u043d\u0438\u044f \u0443\u0447\u0435\u0442\u043d\u044b\u0445 \u0434\u0430\u043d\u043d\u044b\u0445 \u043a\u043e\u043d\u0442\u0440\u043e\u043b\u043b\u0435\u0440\u0430 Ingress-nginx;\n- CVE-2023-5043\u00a0(\u043e\u0446\u0435\u043d\u043a\u0430 CVSS: 7,6): \u0432\u043d\u0435\u0434\u0440\u0435\u043d\u0438\u0435 \u0430\u043d\u043d\u043e\u0442\u0430\u0446\u0438\u0438 Ingress-nginx \u0432\u044b\u0437\u044b\u0432\u0430\u0435\u0442 \u0432\u044b\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u0435 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u043b\u044c\u043d\u043e\u0439 \u043a\u043e\u043c\u0430\u043d\u0434\u044b.\n- CVE-2023-5044\u00a0(\u043e\u0446\u0435\u043d\u043a\u0430 CVSS: 7,6): \u0432\u043d\u0435\u0434\u0440\u0435\u043d\u0438\u0435 \u043a\u043e\u0434\u0430 \u0447\u0435\u0440\u0435\u0437 \u0430\u043d\u043d\u043e\u0442\u0430\u0446\u0438\u044e nginx.ingress.kubernetes[.io]/permanent-redirect.\n\n\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0443, \u043a\u043e\u0442\u043e\u0440\u044b\u0439 \u043c\u043e\u0436\u0435\u0442 \u043a\u043e\u043d\u0442\u0440\u043e\u043b\u0438\u0440\u043e\u0432\u0430\u0442\u044c \u043a\u043e\u043d\u0444\u0438\u0433\u0443\u0440\u0430\u0446\u0438\u044e \u043e\u0431\u044a\u0435\u043a\u0442\u0430 Ingress, \u0443\u043a\u0440\u0430\u0441\u0442\u044c \u0441\u0435\u043a\u0440\u0435\u0442\u043d\u044b\u0435 \u0443\u0447\u0435\u0442\u043d\u044b\u0435 \u0434\u0430\u043d\u043d\u044b\u0435 \u0438\u0437 \u043a\u043b\u0430\u0441\u0442\u0435\u0440\u0430.\n\nCVE-2022-4886 \u0438\u0437-\u0437\u0430 \u043e\u0442\u0441\u0443\u0442\u0441\u0442\u0432\u0438\u044f \u043f\u0440\u043e\u0432\u0435\u0440\u043a\u0438 \u0432 \u043f\u043e\u043b\u0435 \u00abspec.rules[].http.paths[].path\u00bb \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0443, \u0438\u043c\u0435\u044e\u0449\u0435\u043c\u0443 \u0434\u043e\u0441\u0442\u0443\u043f \u043a Ingress, \u0441\u043a\u0430\u0447\u0438\u0432\u0430\u0442\u044c \u0443\u0447\u0435\u0442\u043d\u044b\u0435 \u0434\u0430\u043d\u043d\u044b\u0435 API Kubernetes \u0438\u0437 \u043a\u043e\u043d\u0442\u0440\u043e\u043b\u043b\u0435\u0440\u0430 \u0432\u0445\u043e\u0434\u044f\u0449\u0435\u0433\u043e \u0442\u0440\u0430\u0444\u0438\u043a\u0430.\n\n\u0412\u00a0\u043e\u0431\u044a\u0435\u043a\u0442\u0435 Ingress\u00a0\u043e\u043f\u0435\u0440\u0430\u0442\u043e\u0440 \u043c\u043e\u0436\u0435\u0442 \u043e\u043f\u0440\u0435\u0434\u0435\u043b\u0438\u0442\u044c, \u043a\u0430\u043a\u043e\u0439 \u0432\u0445\u043e\u0434\u044f\u0449\u0438\u0439 \u043f\u0443\u0442\u044c HTTP \u043d\u0430\u043f\u0440\u0430\u0432\u043b\u044f\u0435\u0442\u0441\u044f \u043d\u0430 \u043a\u0430\u043a\u043e\u0439 \u0432\u043d\u0443\u0442\u0440\u0435\u043d\u043d\u0438\u0439 \u043f\u0443\u0442\u044c.\n\n\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0435 \u043f\u0440\u0438\u043b\u043e\u0436\u0435\u043d\u0438\u0435 \u043d\u0435 \u043f\u0440\u043e\u0432\u0435\u0440\u044f\u0435\u0442 \u0434\u043e\u043b\u0436\u043d\u044b\u043c \u043e\u0431\u0440\u0430\u0437\u043e\u043c \u0434\u043e\u0441\u0442\u043e\u0432\u0435\u0440\u043d\u043e\u0441\u0442\u044c \u0432\u043d\u0443\u0442\u0440\u0435\u043d\u043d\u0435\u0433\u043e \u043f\u0443\u0442\u0438 \u0438 \u043c\u043e\u0436\u0435\u0442 \u0443\u043a\u0430\u0437\u044b\u0432\u0430\u0442\u044c \u043d\u0430 \u0432\u043d\u0443\u0442\u0440\u0435\u043d\u043d\u0438\u0439 \u0444\u0430\u0439\u043b, \u043a\u043e\u0442\u043e\u0440\u044b\u0439 \u0441\u043e\u0434\u0435\u0440\u0436\u0438\u0442 \u0442\u043e\u043a\u0435\u043d \u0443\u0447\u0435\u0442\u043d\u043e\u0439 \u0437\u0430\u043f\u0438\u0441\u0438 \u0441\u043b\u0443\u0436\u0431\u044b \u0434\u043b\u044f \u0430\u0443\u0442\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0446\u0438\u0438 \u043a\u043b\u0438\u0435\u043d\u0442\u0430 \u043d\u0430 \u0441\u0435\u0440\u0432\u0435\u0440\u0435 API.\n\n\u0412 \u043e\u0442\u0441\u0443\u0442\u0441\u0442\u0432\u0438\u0435 \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u0439 \u0440\u0430\u0437\u0440\u0430\u0431\u043e\u0442\u0447\u0438\u043a\u0438 \u041f\u041e \u0432\u044b\u043f\u0443\u0441\u0442\u0438\u043b\u0438 \u043c\u0435\u0440\u044b \u043f\u043e \u0441\u043c\u044f\u0433\u0447\u0435\u043d\u0438\u044e \u043f\u043e\u0441\u043b\u0435\u0434\u0441\u0442\u0432\u0438\u0439, \u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u0432\u043a\u043b\u044e\u0447\u0430\u044e\u0442 \u0432 \u0441\u0435\u0431\u044f \u0430\u043a\u0442\u0438\u0432\u0430\u0446\u0438\u044e \u043e\u043f\u0446\u0438\u0438 \u00abstrict-validate-path-type\u00bb \u0438 \u0443\u0441\u0442\u0430\u043d\u043e\u0432\u043a\u0443 \u0444\u043b\u0430\u0433\u0430 --enable-annotation-validation, \u0447\u0442\u043e\u0431\u044b \u043f\u0440\u0435\u0434\u043e\u0442\u0432\u0440\u0430\u0442\u0438\u0442\u044c \u0441\u043e\u0437\u0434\u0430\u043d\u0438\u0435 \u043e\u0431\u044a\u0435\u043a\u0442\u043e\u0432 Ingress \u0441 \u043d\u0435\u0434\u043e\u043f\u0443\u0441\u0442\u0438\u043c\u044b\u043c\u0438 \u0441\u0438\u043c\u0432\u043e\u043b\u0430\u043c\u0438 \u0438 \u0432\u0432\u0435\u0441\u0442\u0438 \u0434\u043e\u043f\u043e\u043b\u043d\u0438\u0442\u0435\u043b\u044c\u043d\u044b\u0435 \u043e\u0433\u0440\u0430\u043d\u0438\u0447\u0435\u043d\u0438\u044f.\n\n\u0412 ARMO \u0437\u0430\u044f\u0432\u0438\u043b\u0438, \u0447\u0442\u043e \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 NGINX \u0434\u043e \u0432\u0435\u0440\u0441\u0438\u0438 1.19, \u043d\u0430\u0440\u044f\u0434\u0443 \u0441 \u0434\u043e\u0431\u0430\u0432\u043b\u0435\u043d\u0438\u0435\u043c \u043a\u043e\u043d\u0444\u0438\u0433\u0443\u0440\u0430\u0446\u0438\u0438 \u043a\u043e\u043c\u0430\u043d\u0434\u043d\u043e\u0439 \u0441\u0442\u0440\u043e\u043a\u0438 \u00ab--enable-annotation-validation\u00bb, \u0443\u0441\u0442\u0440\u0430\u043d\u044f\u0435\u0442 CVE-2023-5043 \u0438 CVE-2023-5044.", "creation_timestamp": "2023-10-30T17:00:07.000000Z"}]}