Exploit for CVE-2025-1974

Name: Exploit for CVE-2025-1974
Rating: 5 (146 reviews)

2025-03-28 | CVSS 9.8

## https://sploitus.com/exploit?id=9522E6C4-B6D3-56C5-BFA5-1490D15C1D31
# POC of IngressNightmare (CVE-2025-1974)

>Developed from:
- https://github.com/yoshino-s/CVE-2025-1974
- https://www.wiz.io/blog/ingress-nginx-kubernetes-vulnerabilities

Talk is cheap, just look at the code.

Detailed can be found at https://www.wiz.io/blog/ingress-nginx-kubernetes-vulnerabilities

## Usage

1. Change the ip in `shell.c`
2. Check the docker is available and run `make shell.so`. (We need to build so in alpine to make sure it can works in nginx-ingress-controller which is base on musl-libc)
3. Run `python3 exploit.py` to get your shell.

> You may need to change the range at line 25 and 26, which indicates the range of the pid and fd. The default value is a compromise between the speed and the success rate.