Kubernetes security flaw also earns bug bounty from Microsoft
Source:-portswigger.net Security researchers earned bug bounties from both Kubernetes and Microsoft after uncovering vulnerabilities in versions of the container technology that were hosted on Microsoft Azure. French researchers Brice Augras of Groupe Asten and Christophe Hauquiert of Nokia applied a server-side request forgery (SSRF) attack to put together a privilege elevation exploit. The duo developed the attack after setting out to prepare a talk on Kubernetes security in a managed service environment. Dynamic exploit The flaw (CVE-2020-8555) related to the
Read more