Kubernetes vulnerability allows RCE on Windows endpoints (CVE-2023-3676)

high-severity Kubernetes (--3676, CVE-2023-3893, CVE-2023-3955) could allow to execute code remotely and gain over nodes in the Kubernetes cluster.

About the vulnerabilities

CVE-2023-3676, discovered by researcher Tomer Peled, is a command vulnerability that can be exploited by applying a malicious YAML file on the cluster.

“The Kubernetes framework uses YAML files

Read more

Related Posts