fromTheregister
2 months agoPublic-facing Kubernetes clusters at risk of total takeover
"Our team found a vulnerability in this phase that allows injecting an arbitrary Nginx configuration remotely, by sending a malicious ingress object directly to the admission controller through the network."
Information security