⚠️ Over 40% of Kubernetes platforms can be affected
Recently a very critical vulnerability has been found in the ingress-nginx component. I consider it to be quite easy to exploit and very harmful. See the original post describing the vulnerability.
You might be affected if:
- You are using Kubernetes
- You are using the Nginx Ingress controller (this is very likely because it’s the most popular)
- You are running many containers with access to shell (this is also very likely)
Read more about it
I have dived deeper into the topic and described my observations in this article. Read it if you want to know more about the potential risks and threats.
Get immediate help
I’m afraid many clusters will remain vulnerable for a long time and that’s why I offer free consulting to companies that want to check, fix and secure their Kubernetes clusters.
This is also an opportunity in which I help fix an important configuration gap that can be exploited even more easily than this one.
Please use the form below and I will contact you as soon as possible.