CVE-2020-5866
23.04.2020, 19:15
In versions of NGINX Controller prior to 3.3.0, the helper.sh script, which is used optionally in NGINX Controller to change settings, uses sensitive items as command-line arguments.Enginsight
| Vendor | Product | Version |
|---|---|---|
| f5 | nginx_controller | 2.0.0 ≤ 𝑥 ≤ 2.9.0 |
| f5 | nginx_controller | 3.0.0 ≤ 𝑥 < 3.3.0 |
| f5 | nginx_controller | 1.0.1 |
𝑥
= Vulnerable software versions
Common Weakness Enumeration