CVE-2025-1974

This exploit leverages a crafted AdmissionRequest to the Ingress-NGINX webhook, injecting a malicious shared object (shell.so) via a raw socket connection. The exploit brute-forces process IDs and file descriptors to trigger code execution through a manipulated annotation in the Ingress resource.

This exploit demonstrates a file descriptor injection vulnerability in the Ingress-NGINX Admission Controller, leading to remote code execution by uploading a malicious shared object and brute-forcing file descriptors.

This repository contains a functional exploit for CVE-2025-1974, targeting unauthenticated RCE in Ingress NGINX Controller for Kubernetes. The exploit compiles a malicious shared object, uploads it via a crafted HTTP request with mismatched Content-Length, and brute-forces file descriptors to trigger execution.

This repository contains a functional exploit for CVE-2025-1974, targeting Kubernetes ingress-nginx. The exploit leverages a flaw in HTTP request handling to achieve remote code execution by manipulating temporary file caching and admission webhook validation.

This PoC demonstrates a remote code execution (RCE) vulnerability in the Kubernetes Ingress-NGINX controller (CVE-2025-1974) by exploiting the validating webhook server. The exploit involves sending a maliciously crafted AdmissionReview request to the webhook server, which processes the request and executes arbitrary commands via `nginx -t` on a temporary configuration file.

This PoC exploits CVE-2025-1974 in Kubernetes ingress-nginx by injecting a malicious shared object (shell.so) via a crafted admission request, leading to remote code execution. The exploit leverages file descriptor manipulation and a reverse shell payload.

This repository contains a functional exploit for CVE-2025-1974, targeting a Kubernetes Ingress vulnerability. The exploit uses a crafted AdmissionReview request to achieve remote code execution (RCE) via a base64-encoded payload.

This repository contains a functional exploit for CVE-2025-1974, targeting unauthenticated RCE in the Ingress NGINX Controller for Kubernetes. The exploit involves compiling a malicious shared object, uploading it via request handling manipulation, and brute-forcing file descriptors to achieve code execution.

This is a functional PoC for CVE-2025-1974, an RCE vulnerability in Ingress NGINX. It exploits the admission webhook to inject a reverse shell via a malicious shared object file compiled from C code.

This repository contains a proof-of-concept exploit for CVE-2025-1974, targeting a vulnerability in NGINX Ingress for Kubernetes. The exploit leverages improper input sanitization in AdmissionReview requests to inject malicious NGINX configurations, enabling arbitrary shared object loading and potential remote code execution.

This repository contains a proof-of-concept exploit for CVE-2025-1974, targeting Kubernetes Ingress-NGINX Admission Controller. The exploit leverages unauthenticated AdmissionReview requests to inject malicious configurations, potentially leading to remote code execution when combined with other vulnerabilities.

This exploit targets CVE-2025-1974 in Kubernetes Ingress-Nginx by leveraging a file descriptor injection vulnerability to achieve remote code execution. It embeds a reverse shell payload and uses a slow reader to trigger the vulnerability via admission controller requests.

This PoC exploits CVE-2025-1974 in Ingress-NGINX by injecting a malicious shared object (shell.so) via a crafted admission request, leading to remote code execution. The exploit leverages file descriptor manipulation and a reverse shell payload.

This PoC exploits CVE-2025-1974 in Ingress-NGINX by injecting a malicious Lua snippet via an Ingress annotation, leading to arbitrary command execution inside the ingress controller pod. The exploit creates or updates an Ingress resource with a server-snippet annotation containing a Lua block that executes a shell command.

This repository is an educational lab for CVE-2025-1974, focusing on attack emulation and defense validation for Windows 11 environments. It includes sanitized fixtures and simulators to demonstrate attack paths without actual exploitation, along with defensive checks for ingress-nginx versions and mitigation posture.

This repository contains a functional PoC for CVE-2025-1974, an unauthenticated RCE vulnerability in Kubernetes ingress-nginx admission controller. The exploit involves uploading a malicious .so file and injecting it via a crafted Ingress manifest to achieve arbitrary code execution.

This exploit leverages CVE-2025-1974 to achieve remote code execution (RCE) in Kubernetes Ingress-nginx by injecting Lua code via a malicious AdmissionReview request. The PoC demonstrates command execution by embedding a Lua payload in an Ingress resource annotation.

This is a detailed writeup for CVE-2025-1974, an unauthenticated RCE vulnerability in ingress-nginx's validating admission controller. It explains the root cause, impact, affected versions, and exploitation conditions but does not contain actual exploit code.

This PoC exploits CVE-2025-1974 by injecting a malicious shared library (`shell.so`) into an ingress pod via a crafted HTTP request, then brute-forcing file descriptors to trigger execution. The payload establishes a reverse shell to a hardcoded IP/port.

The repository contains only a README.md file with no exploit code or technical details. It appears to be a placeholder or incomplete project.

The repository contains a functional exploit for CVE-2025-1974, demonstrating a remote code execution (RCE) vulnerability in CUPS via a malicious IPP server and UDP packet injection. The exploit leverages a crafted printer URI and FoomaticRIP command injection to achieve arbitrary command execution on the target system.

This PoC exploits CVE-2025-1974 in ingress-nginx-controller by injecting a malicious shared object (shell.so) via an admission request, leading to remote code execution. The exploit leverages file descriptor manipulation and a reverse shell payload.

The repository contains a Python script designed to automate sending JSON payloads to a list of IPs via curl, capturing responses, and generating XML reports for successful and failed requests. It does not contain an exploit payload but serves as a scanner to identify potentially vulnerable targets.

This PoC exploits an authentication bypass in the Ingress-NGINX Admission Controller (CVE-2025-1974) to inject malicious Ingress configurations, potentially leading to RCE when combined with other vulnerabilities. It includes a brute-force component to target /proc file descriptors and a payload delivery mechanism via a shared library.

This PoC exploits CVE-2025-1974 in Kubernetes Ingress Nginx Controller by uploading a malicious shared object (rev_shell.so) and triggering its execution via an AdmissionReview request. The exploit achieves remote code execution by leveraging a vulnerability in the controller's handling of annotations.

This repository contains a Python script that scans a Kubernetes cluster to detect the presence of the Ingress NGINX Controller and checks if it is running a version vulnerable to CVE-2025-1974. It does not exploit the vulnerability but provides version detection and vulnerability status.

This PoC tests for annotation injection in Kubernetes NGINX Ingress Controller (CVE-2025-1974) by sending a crafted AdmissionReview payload to the admission controller's validation endpoint. It checks if malicious annotations are improperly processed, potentially leading to RCE when chained with other misconfigurations.

This PoC detects CVE-2025-1974 by injecting an NGINX configuration directive via the `auth-url` annotation, triggering DNS resolution to an attacker-controlled domain during configuration validation. It does not execute arbitrary code but confirms vulnerability presence through DNS callbacks.

The repository contains only a README.md file with a CVE identifier and no additional details or exploit code. No technical information or proof-of-concept is provided.