. home.aspx



Kubernetes Security Flaw Expected, Won’t Be the Last

December 19, 2018 / Dan Meyer

Container security experts warn that the recently discovered – and rapidly patched – Kubernetes security flaw will not be the last. And, most say that’s a good thing. “There are always going to be vulnerabilities,” explained Rani Osnat, vice president of product marketing at Aqua Security. “The fact that one was found was to be expected. And I expect more will be found going forward. That’s just what should be expected with software.”The flaw itself was discovered earlier this month by a software engineer at Rancher Labs. It impacted all Kubernetes-based products and services, and gave hackers full administrative privileges on any compute node being run in a Kubernetes cluster. The flaw garnered a 9.8 (critical) score out of 10 on the Common Vulnerability Scoring System (CVSS). A patch was produced within 24 hours of the flaw being discovered and disseminated to the Kubernetes community. That patch worked to protect Kubernetes versions ba...