2022 Kubernetes Vulnerabilities – Main Takeaways
All the main K8s vulnerabilities from 2022 consolidated into one article. Read all about it...
CloudSec Blog by ARMO
Most viewed articles
The State of Kubernetes {Open-Source} Security
A first of its kind survey looks at the relationship between open-source and K8s security....
How to Deploy the Kubernetes Dashboard
Kubernetes clusters consist of multiple resources and API objects interacting dynamically. This typically makes cluster...
CVE-2022-39328: Unauthorized access to arbitrary endpoints in Grafana codebase
Grafana Labs published a security advisory for a new critical vulnerability in its open-source product....
Introducing:
Kubescape Open-API Framework (Swagger)
Open source got more open source-y. Kubescape API is now documented on Swagger, the OpenAPI...
NSA & CISA Kubernetes Hardening Guide – what is new with version 1.2
In August 2022, NSA & CISA has issued a new version of the Kubernetes Hardening Guide – version...
Upcoming Critical OpenSSL Vulnerability
This blog covers a developing story and it will be updated as new information and...
How to validate Kubernetes YAML files?
Kubernetes has taken center stage in how we now manage our containerized applications. As a...
Craig Box joins ARMO as VP Open Source & Community
Former Google DevRel lead and co-host of the weekly Kubernetes podcast, Craig will lead ARMO’s...
CI/CD Security: How to Keep your CI/CD Pipelines Secure
The tech sector is expanding aggressively. And for businesses and services, keeping up with this...
CVE-2022-3172 – kube-apiserver can allow an aggregated API server to redirect client traffic to any URL
A new vulnerability was reported on Sep 16th in kube-apiserver that allows an aggregated API...
CVE-2022-0492 – Privilege Escalation and Container Escape Vulnerability and its impact on Kubernetes
On March 4th, a new privilege escalation vulnerability (CVE-2022-0492) in the Linux kernel was published....
Continue as a guest