all InfoSec news
Reported EKS IAM Authenticator Issue
July 11, 2022, 3:54 p.m. | aws@amazon.com
Latest Bulletins aws.amazon.com
Initial Publication Date: 2022/07/11 9:00 PST
A security researcher recently reported an issue with the AWS IAM Authenticator for Kubernetes, used by Amazon Elastic Kubernetes Service (EKS). The researcher identified a query parameter validation issue within the authenticator plugin when configured to use the “AccessKeyID” template parameter within query strings. This issue could have permitted a knowledgeable attacker to escalate privileges within a Kubernetes cluster. Customers who do not use the “AccessKeyID” parameter are not affected by this issue.
As …
More from aws.amazon.com / Latest Bulletins
AWS Response to March 2024 CSRB report
1 month, 1 week ago |
aws.amazon.com
CVE-2024-21626 - Runc container issue
3 months, 4 weeks ago |
aws.amazon.com
CVE-2023-44487 - HTTP/2 Rapid Reset Attack
7 months, 3 weeks ago |
aws.amazon.com
Issue with Amazon WorkSpaces Windows Client Version 5.9 and 5.10
7 months, 3 weeks ago |
aws.amazon.com
Reported TorchServe Issue (CVE-2023-43654)
7 months, 4 weeks ago |
aws.amazon.com
Jobs in InfoSec / Cybersecurity
CyberSOC Technical Lead
@ Integrity360 | Sandyford, Dublin, Ireland
Cyber Security Strategy Consultant
@ Capco | New York City
Cyber Security Senior Consultant
@ Capco | Chicago, IL
Sr. Product Manager
@ MixMode | Remote, US
Security Compliance Strategist
@ Grab | Petaling Jaya, Malaysia
Cloud Security Architect, Lead
@ Booz Allen Hamilton | USA, VA, McLean (1500 Tysons McLean Dr)