Exploiting Authentication in AWS IAM Authenticator for Kubernetes
During my research on the AWS IAM Authenticator component, I found several flaws in the authentication process that could bypass the protection against replay attacks or allow an attacker to gain higher permissions in the cluster by impersonating other identities. In this blog post I will explain about three vulnerabilities detected in the AWS IAM Authenticator where all of them were caused by the same code line.
New Vulnerabilities in Kubernetes NGINX Ingress Controller
Starting in October 2021, the NGINX’s Kubernetes Ingress Controller started to come under siege from security researchers and the open salvo was delivered in the form of CVE-2021-25742 which allowed attackers to gain access to secrets stored across all namespaces in a Kubernetes cluster. In this post I will provide background and details for following vulnerabilities caused by the same root cause, CVE-2021-25745 and CVE-2021-25748.