CVE-2024-3177: Bypassing Kubernetes Mountable Secrets Policy Using the envFrom Field in Containers, Init Containers, and Ephemeral Containers
A critical security vulnerability, identified as CVE-2024-3177, has been discovered in Kubernetes that allows unauthorized users to launch containers that bypass the mountable secrets policy
CVE-2023-5528: Critical Security Issue in Kubernetes Windows Nodes - Privilege Escalation Vulnerability
A critical security issue, identified as CVE-2023-5528, has been discovered in Kubernetes, which could potentially allow a malicious user to escalate their privileges to admin
CVE-2022-3172: Understanding or XSS Worm, the Threat to Kube-Apiserver and Safeguarding Your System
There's a new security issue in the wild, identified as CVE-2022-3172, that has been discovered in kube-apiserver. This issue allows an aggregated API
CVE-2023-3893: Kubernetes-csi-proxy Security Vulnerability on Windows Nodes – Privilege Escalation Exploit
A significant security issue has been discovered in Kubernetes, specifically affecting Windows nodes running the kubernetes-csi-proxy component. Kubernetes clusters with Windows nodes executing kubernetes-csi-proxy may
CVE-2023-3955: Critical Privilege Escalation Vulnerability in Kubernetes Affecting Windows Nodes
A high-severity security vulnerability (CVE-2023-3955) has been discovered in Kubernetes that can allow attackers to escalate their privileges on Windows nodes. This issue currently affects
Episode
00:00:00
00:00:00