1 link tagged with all of: exploit + vulnerability + rbac
Click any tag below to further narrow down your results
Links
This article details a vulnerability in Kubernetes where service accounts with nodes/proxy GET permissions can execute commands in any Pod across reachable Nodes. This issue arises from how the Kubelet authorizes WebSocket connections, potentially leading to full cluster compromise without proper logging.