Kubernetes internal auth bypass via nodes/proxy GET permission
(grahamhelton.com)
from sk4nz@lemmy.sdf.org to cybersecurity@infosec.pub on 26 Jan 20:35
https://lemmy.sdf.org/post/49723059
from sk4nz@lemmy.sdf.org to cybersecurity@infosec.pub on 26 Jan 20:35
https://lemmy.sdf.org/post/49723059
It is not an universal RCE (it works from a service account with the correct permissions).
threaded - newest