All versions of Kubernetes found to be at risk of attack

An unpatched man-in-the-middle (MiTM) vulnerability has been discovered which affects all versions of Kubernetes and can be exploited remo...

An unpatched man-in-the-middle (MiTM) vulnerability has been discovered which affects all versions of Kubernetes and can be exploited remotely by attackers.

The medium severity vulnerability, discovered by Anevia's Etienne Champetier last year and tracked as CVE-2020-8554, enables an attacker with the ability to create or edit services and pods to intercept traffic from other pods (or nodes) without user interaction.

Software engineer at Apple, Tim Allclair explained that the issue is a design flaw that impacts all Kubernetes versions in a recently published security advisory, saying:

“If a potential attacker can already create or edit services and pods, then they may be able to intercept traffic from other pods (or nodes) in the cluster. This issue is a design flaw that cannot be mitigated without user-facing changes.”

External IP services

While this MiTM vulnerability affects all versions of Kubernetes, only a small number of deployments are vulnerable to potential attacks as External IP services are not widely used in multi-tenant clusters.

However, since a patch is unavailable at the moment, Allclair recommends that admins restrict access to the vulnerable features to protect their multi-tenant clusters.

This can be done by using an admission webhook container created by the Kubernetes Product Security Committee that is available to download here. Alternatively, external IPs can also be restricted by using OPA Gatekeeper.

To detect attacks exploiting this vulnerability, it is recommended that admins manually audit any external IP usage. At the same time though, users should not patch service status as audit events for patch service status requests authenticated to a user may be suspicious, according to Allclair.

Via BleepingComputer



from TechRadar - All the latest technology news https://ift.tt/2VRPXAs
via IFTTT

COMMENTS

BLOGGER
Name

Apps,3858,Business,151,Camera,1155,Earn $$$,3,Gadgets,1741,Games,926,GTA,1,Innovations,3,Mobile,1697,Paid Promotions,5,Promotions,5,Sports,1,Technology,8106,Trailers,796,Travel,37,Trending,4,Trendly News,25335,TrendlyNews,110,Video,5,XIAOMI,13,YouTube - 9to5Google,109,
ltr
item
Trendly News | #ListenNow #Everyday #100ShortNews #TopTrendings #PopularNews #Reviews #TrendlyNews: All versions of Kubernetes found to be at risk of attack
All versions of Kubernetes found to be at risk of attack
Trendly News | #ListenNow #Everyday #100ShortNews #TopTrendings #PopularNews #Reviews #TrendlyNews
http://www.trendlynews.in/2020/12/all-versions-of-kubernetes-found-to-be.html
http://www.trendlynews.in/
http://www.trendlynews.in/
http://www.trendlynews.in/2020/12/all-versions-of-kubernetes-found-to-be.html
true
3372890392287038985
UTF-8
Loaded All Posts Not found any posts VIEW ALL Readmore Reply Cancel reply Delete By Home PAGES POSTS View All RECOMMENDED FOR YOU LABEL ARCHIVE SEARCH ALL POSTS Not found any post match with your request Back Home Sunday Monday Tuesday Wednesday Thursday Friday Saturday Sun Mon Tue Wed Thu Fri Sat January February March April May June July August September October November December Jan Feb Mar Apr May Jun Jul Aug Sep Oct Nov Dec just now 1 minute ago $$1$$ minutes ago 1 hour ago $$1$$ hours ago Yesterday $$1$$ days ago $$1$$ weeks ago more than 5 weeks ago Followers Follow THIS PREMIUM CONTENT IS LOCKED STEP 1: Share. STEP 2: Click the link you shared to unlock Copy All Code Select All Code All codes were copied to your clipboard Can not copy the codes / texts, please press [CTRL]+[C] (or CMD+C with Mac) to copy