Command-line argument vulnerability in NGINX Controller's helper.sh script

Command-line argument vulnerability in NGINX Controller's helper.sh script

CVE-2020-5866 · MEDIUM Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

In versions of NGINX Controller prior to 3.3.0, the helper.sh script, which is used optionally in NGINX Controller to change settings, uses sensitive items as command-line arguments.

Learn more about our Cis Benchmark Audit For Nginx.