2 comments

[ 2.4 ms ] story [ 16.9 ms ] thread
Heads up, this is a critical Kubernetes security vulnerability that can be exploited without any credentials via a network vector and without leaving a trace.

It fixes Kubernetes issue 71411 [1]: CVE-2018-1002105: proxy request handling in kube-apiserver can leave vulnerable TCP connections.

https://github.com/kubernetes/kubernetes/issues/71411

Hi for Everyone! I"ve got an interesting news. Would you like to have an interesting pastime in internet. http://bit.ly/love-ok Click here.