Launch Week Day 1: Announcing Security Design Review

Ingress-nginx path sanitization can be bypassed

GHSA-gvrm-w2f9-f77q · CVE-2022-4886

Published Oct 25, 2023 · Modified May 20, 2026

Description

Ingress-nginx path sanitization can be bypassed with log_format directive.

References

Ready to move

Start Securing

Start for Free Get Demo

Free, no credit card | First findings in minutes