Back to overview

CVE-2026-55723

HIGH
8.3
CVSS 3.1
Description
When NGINX Ingress Controller is configured with Custom Resource Definitions (CRDs) or Ingress annotations, an injection vulnerability exists in the configuration generator of NGINX Ingress Controller. Multiple user-controllable fields are written into the generated NGINX configuration without sanitization. An authenticated attacker with permission to create or modify these CRDs or annotations may craft values that inject arbitrary NGINX configuration directives. Impact: An authenticated attacker granted write access to NGINX Ingress Controller CRDs or Ingress annotations through the Kubernetes API may be able to inject arbitrary NGINX configuration directives, create or delete files, or disable services. There is no data plane exposure; this is a control plane issue only. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.

Metadata

CVE ID
CVE-2026-55723
State
PUBLISHED
Assigner
f5
Reserved
2026-06-17 23:45 UTC
Published
2026-07-15 14:33 UTC
Last updated
2026-07-15 15:36 UTC
Primary CWE
CWE-76
CWE-76 Improper Neutralization of Equivalent Special Element…
Vendor / Product
F5 / NGINX Ingress Controller
Sources
cve.org  ·  NVD

Severity & Metrics

8.3 HIGH CVSS 3.1
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:L
SSVC — CISA Coordinator
Exploitation
none
Automatable
no
Tech. Impact
total
Affected products (1)
VendorProductPlatformVersions
F5 NGINX Ingress Controller 5.0.0 < 5.5.2, 2026-lts-r1 < 2026-lts-r3
Weakness (CWE)
CWESourceDescription
CWE-76 cna CWE-76 Improper Neutralization of Equivalent Special Elements
CVSS scores (2)
ScoreSeverityVersionSourceVector
8.7 HIGH 4.0 cna CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:L/SC:N/SI:N/SA:N
8.3 HIGH 3.1 cna CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:L
Back to overview