all InfoSec news
Reported EKS IAM Authenticator Issue
July 11, 2022, 3:54 p.m. | aws@amazon.com
Latest Bulletins aws.amazon.com
Initial Publication Date: 2022/07/11 9:00 PST
A security researcher recently reported an issue with the AWS IAM Authenticator for Kubernetes, used by Amazon Elastic Kubernetes Service (EKS). The researcher identified a query parameter validation issue within the authenticator plugin when configured to use the “AccessKeyID” template parameter within query strings. This issue could have permitted a knowledgeable attacker to escalate privileges within a Kubernetes cluster. Customers who do not use the “AccessKeyID” parameter are not affected by this issue.
As …
More from aws.amazon.com / Latest Bulletins
CVE-2024-21626 - Runc container issue
1 month, 3 weeks ago |
aws.amazon.com
CVE-2023-44487 - HTTP/2 Rapid Reset Attack
5 months, 2 weeks ago |
aws.amazon.com
Issue with Amazon WorkSpaces Windows Client Version 5.9 and 5.10
5 months, 3 weeks ago |
aws.amazon.com
Reported TorchServe Issue (CVE-2023-43654)
5 months, 3 weeks ago |
aws.amazon.com
CVE-2023-20569 - RAS Poisoning - Inception
7 months, 2 weeks ago |
aws.amazon.com
CVE-2022-40982 - Gather Data Sampling - Downfall
7 months, 2 weeks ago |
aws.amazon.com
Jobs in InfoSec / Cybersecurity
Information Technology Specialist II: Network Architect
@ Los Angeles County Employees Retirement Association (LACERA) | Pasadena, CA
Cybersecurity Skills Challenge -- Sponsored by DoD
@ Correlation One | United States
Security Operations Center (SOC) Analyst
@ GK Cybersecurity Group | Remote
Engineering Manager - Cloud Security team
@ SentinelOne | Prague, Czech Republic
Legal & Compliance Apprentice (H/F)
@ Novo Nordisk | Puteaux, Île-de-France, FR
Manager, Governance Risk & Compliance
@ Comcast | Virtual