CVE-2021-25742: Ingress-nginx custom snippets allows retrieval of ingress-nginx serviceaccount token and secrets across all namespaces.
CVE-2021-25742 affects Ingress-nginx versions v1.0.0, and all versions less than or equal to v0.49.0. Therefore, it is recommended to either use latest version or customize the default manifest to edit 'data:allow-snippet-annotations' and set it to 'false'.
References:
https://github.com/kubernetes/ingress-nginx/issues/7837