How severe is CVE-2021-23018?

CVE-2021-23018 has a CVSS v3 score of 7.4 (HIGH).

CVE-2021-23018

Name: nginx_controller
Author: f5

7.4HIGH

Intra-cluster communication does not use TLS. The services within the NGINX Controller 3.x before 3.4.0 namespace are using cleartext protocols inside the cluster.

Veröffentlicht: 6/1/2021Aktualisiert: 11/21/2024

Beschreibung

Intra-cluster communication does not use TLS. The services within the NGINX Controller 3.x before 3.4.0 namespace are using cleartext protocols inside the cluster.

KI-AnalyseKI-gestützt

Betroffene Produkte

f5nginx_controller

Referenzen

https://support.f5.com/csp/article/K97002210
Vendor Advisory
https://support.f5.com/csp/article/K97002210
Vendor Advisory