CVE-2021-23018

Summary

Intra-cluster communication does not use TLS. The services within the NGINX Controller 3.x before 3.4.0 namespace are using cleartext protocols inside the cluster.

Affected Software

VendorProductVersion RangeStatus
n/aNginx Controller"3.x before 3.4.0"affected

Weaknesses

  • CWE-319: CWE-319

ADP Enrichment

CVE Program Container

Additional References

References