all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

CVE-2022-0185: Kubernetes Container Escape Using Linux Kernel Exploit

Add to bookmarks
Jan. 31, 2022, 11:11 p.m. | Manoj Ahuje

Cybersecurity Blog | CrowdStrike provinggrounds.cs.sys

On Jan. 18, 2022, researchers found a heap base buffer overflow flaw (CVE-2022-0185) in the Linux kernel (5.1-rc1+) function “legacy_parse_param” of filesystem context functionality, which allows an out-of-bounds write in kernel memory. Using this primitive, an unprivileged attacker can escalate its privilege to root, bypassing any Linux namespace restrictions. CVE-2022-0185 Needs CAP_SYS_ADMIN This flaw is […]

container cve endpoint & cloud security escape exploit featured kernel kubernetes linux

Visit resource

More from provinggrounds.cs.sys / Cybersecurity Blog | CrowdStrike

5 Best Practices to Secure AWS Resources 15 hours ago | provinggrounds.cs.sys
amazon amazon web services aws best practices +24
Porter Airlines Consolidates Its Cloud, Identity and Endpoint Security with CrowdStrike 4 days, 12 hours ago | provinggrounds.cs.sys
agent airline airlines architecture +24
Secure Your Staff: How to Protect High-Profile Employees’ Sensitive Data on the Web 4 days, 13 hours ago | provinggrounds.cs.sys
accounts adversary can counter +28
Deploying the Droids: Optimizing Charlotte AI’s Performance with a Multi-AI Architecture 5 days, 14 hours ago | provinggrounds.cs.sys
architecture charlotte ai cybersecurity don +5
CrowdStrike Falcon Next-Gen SIEM Unveils Advanced Detection of Ransomware Targeting VMware ESXi Environments 1 week ago | provinggrounds.cs.sys
access advanced companies credentials +27
CVE-2024-3400: What You Need to Know About the Critical PAN-OS Zero-Day 1 week, 3 days ago | provinggrounds.cs.sys
april block critical cve +15
CrowdStrike Falcon Wins Best EDR Annual Security Award in SE Labs Evaluations 1 week, 3 days ago | provinggrounds.cs.sys
adversary and response award crowdstrike +21
CrowdStrike Extends Identity Security Capabilities to Stop Attacks in the Cloud 1 week, 5 days ago | provinggrounds.cs.sys
active directory attackers attacks breaches +24
April 2024 Patch Tuesday: Three Critical RCE Vulnerabilities in Microsoft Defender for IoT 1 week, 6 days ago | provinggrounds.cs.sys
april code code execution critical +20

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Information Security Engineers

@ D. E. Shaw Research | New York City
View on infosec-jobs.com

Werkstudent (w/m/d) - Cyber Security

@ IONOS | Karlsruhe, Germany
View on infosec-jobs.com

Security Operations Manager

@ BambooHR | Utah | Hybrid
View on infosec-jobs.com

Senior Risk and Compliance Analyst

@ Cricket.com | Hyderabad
View on infosec-jobs.com

Cyber Security Architect

@ Lilium | Munich
View on infosec-jobs.com
View more jobs