all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Breaking down a a high-severity vulnerability in Kubernetes. [Research Saturday]

Add to bookmarks
April 13, 2024, 7 a.m. | N2K Networks

CyberWire Daily thecyberwire.com

Tomer Peled, a Security & Vulnerability Researcher from Akamai is sharing their work on "What a Cluster: Local Volumes Vulnerability in Kubernetes." This research focuses on a high-severity vulnerability in Kubernetes, allowing for remote code execution with system privileges on all Windows endpoints within a Kubernetes cluster.
The research states "The discovery of this vulnerability led to the discovery of two others that share the same root cause: insecure function call and lack of user input sanitization."
The research can …

akamai amp breaking cluster code code execution down endpoints high high-severity vulnerability kubernetes local privileges remote code remote code execution research researcher security severity sharing states system system privileges tomer peled vulnerability windows work

Visit resource

More from thecyberwire.com / CyberWire Daily

An unprecedented surge in credential stuffing. 22 hours ago | thecyberwire.com
as-a-service bank botnet ceo +33
Encore: Jack Rhysider: Get your experience points in everything. [Media] [Career Notes] 2 days, 11 hours ago | thecyberwire.com
career computer darknet darknet diaries +19
Cerber ransomware strikes Linux. [Research Saturday] 3 days, 11 hours ago | thecyberwire.com
application cado security cerber cerber ransomware +16
Kaiser Permanente's privacy predicament. 3 days, 22 hours ago | thecyberwire.com
breaches cisa cobalt cobalt strike +35
Cyber Talent Insights: Strengthening the cyber talent pipeline apparatus. (Part 3 of 3) [Special Edition] 4 days, 13 hours ago | thecyberwire.com
center changing conversation cyber +17
Cyber Talent Insights: Strengthening the cyber talent pipeline apparatus. (Part 3 of 3) [Special Edition] 4 days, 13 hours ago | thecyberwire.com
center changing conversation cyber +17
The shadowy adversary in Cisco's crosshairs. 4 days, 22 hours ago | thecyberwire.com
adaptive security adversary amazon amazon ring +35
Iran's covert cyber operations exposed. 5 days, 22 hours ago | thecyberwire.com
ban bcrypt brute charges +35
Visa crackdown against spyware swindlers. 6 days, 22 hours ago | thecyberwire.com
apps apt28 breach crackdown +29

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Threat Analysis Engineer

@ Gen | IND - Tamil Nadu, Chennai
View on infosec-jobs.com

Head of Security

@ Hippocratic AI | Palo Alto
View on infosec-jobs.com

IT Security Vulnerability Management Specialist (15.10)

@ OCT Consulting, LLC | Washington, District of Columbia, United States
View on infosec-jobs.com

Security Engineer - Netskope/Proofpoint

@ Sainsbury's | Coventry, West Midlands, United Kingdom
View on infosec-jobs.com

Journeyman Cybersecurity Analyst

@ ISYS Technologies | Kirtland AFB, NM, United States
View on infosec-jobs.com
View more jobs