Kubernetes Privilege Escalation Vulnerability Publicly Disclosed (CVE-2018-1002105)
by Satnam Narang on December 4, 2018
Patches are available for a critical privilege escalation flaw (CVE-2018-1002105) in the open-source container orchestration system, Kubernetes.
Background
On December 3, details about a privilege escalation vulnerability in Kubernetes, the popular open source container orchestration system, were publicly disclosed by the Kubernetes team. Kubernetes is used to automate the deployment, scaling, and management of containerized applications.