Exploit for CVE-2025-1974 CVE-2025-1097 CVE-2025-1974 CVE-2025-24513 CVE-2025-1098 CVE-2025-24514

Name: Exploit for CVE-2025-1974 CVE-2025-1097 CVE-2025-1974 CVE-2025-24513 CVE-2025-1098 CVE-2025-24514
Rating: 5 (736 reviews)

2025-03-24 | CVSS 9.8

## https://sploitus.com/exploit?id=7FBA4A3E-8FC4-5F28-9EB8-288A7E1E6F36
# IngressNightmare-POCs

- CVE-2025-24513: https://github.com/kubernetes/kubernetes/issues/131005
- CVE-2025-24514: https://github.com/kubernetes/kubernetes/issues/131006
- CVE-2025-1097: https://github.com/kubernetes/kubernetes/issues/131007
- CVE-2025-1098: https://github.com/kubernetes/kubernetes/issues/131008
- CVE-2025-1974: https://github.com/kubernetes/kubernetes/issues/131009

Note: Created these POCs before Wiz released the technical information. This may become out of date.
These are also not full exploits, rather they are POCs to understand the exploit flow and vulnerability prerequisites

## More Info
https://blog.shakeylabs.com/ingressnightmare-patch-analysis/

## Shodan Scan
https://www.shodan.io/search?query=ssl%3A%22Issuer%3A+O%3Dnil1%22+port%3A8443+country%3A%22US%22&page=2