IngressNightmare: Understanding CVE‑2025‑1974 in Kubernetes Ingress-NGINX

**IngressNightmare (CVE‑2025‑1974)** is a critical remote code execution vulnerability chain in the Kubernetes Ingress‑NGINX admission webhook that can be exploited from within a cluster network to compromise the ingress controller pod and potentially the entire cluster; the report details the exploit steps, PoC, recommended patches (v1.12.1+/v1.11.5+), network and RBAC mitigations, and detection/coverage by Lacework FortiCNAPP and Fortinet products.