https://github.com/sandumjacob/IngressNightmare-POCs

https://github.com/sandumjacob/IngressNightmare-POCs

Last synced: about 1 month ago
JSON representation

• Host: GitHub
• URL: https://github.com/sandumjacob/IngressNightmare-POCs
• Owner: sandumjacob
• Created: 2025-03-24T21:51:04.000Z (about 1 month ago)
• Default Branch: main
• Last Pushed: 2025-03-24T23:31:42.000Z (about 1 month ago)
• Last Synced: 2025-03-25T00:26:20.153Z (about 1 month ago)
• Size: 0 Bytes
• Stars: 0
• Watchers: 1
• Forks: 0
• Open Issues: 0
• Metadata Files:
  • Readme: README.md

Awesome Lists containing this project

• awesome-hacking-lists - sandumjacob/IngressNightmare-POCs - Worlds First Public POC for CVE-2025-1974 lol (Python)

README

        
# IngressNightmare-POCs

- CVE-2025-24513: https://github.com/kubernetes/kubernetes/issues/131005

- CVE-2025-24514: https://github.com/kubernetes/kubernetes/issues/131006

- CVE-2025-1097: https://github.com/kubernetes/kubernetes/issues/131007

- CVE-2025-1098: https://github.com/kubernetes/kubernetes/issues/131008

- CVE-2025-1974: https://github.com/kubernetes/kubernetes/issues/131009

Note: Created these POCs before Wiz released the technical information. This may become out of date.

These are also not full exploits, rather they are POCs to understand the exploit flow and vulnerability prerequisites

## More Info

https://blog.shakeylabs.com/ingressnightmare-patch-analysis/

## Shodan Scan

https://www.shodan.io/search?query=ssl%3A%22Issuer%3A+O%3Dnil1%22+port%3A8443+country%3A%22US%22&page=2