alcide

Alcide Blog

Cloud-native Security Provider

New Kubernetes Node Storage-based DoS Vulnerability [CVE-2020-8557]

Jul 16, 2020 10:44:47 AM / by Gadi Naor posted in devsecops, kubernetes, devops, network security, Kubernetes security, Advisor, CVE, vulnerability

0 Comments

 

Vulnerability Description and Impact

Read More

New Kubernetes Man-In-The-Middle (MiTM) Attack Leverages IPv6 Router Advertisements

Jun 3, 2020 10:30:43 AM / by Natan Yellin posted in vulnerability, ipv6

0 Comments

 

The recent MiTM attack disclosed was a very unusual one in the Container Security world. All at the same time, Kubernetes, Docker, and Calico announced security bulletins related to IPv6 Rogue Router Advertisements. There are several security bulletins here because this isn’t a single vulnerability in one product - rather, multiple independent CNIs are all vulnerable. IPv6 Router Advertisements are a fairly obscure topic, yet this vulnerability is definitely worth understanding.

Read More

New Kubernetes Control Plane Vulnerability (CVE-2020-8555)

Jun 2, 2020 11:27:05 AM / by Nitzan Niv posted in alcide advisor, Kubernetes security, CVE, vulnerability, kaudit

0 Comments

 

Read More

Subscribe to Email Updates