A misconfiguration in Google Kubernetes Engine (GKE) related to the privileges granted to users in the system:authenticated group could allow attackers to take over Kubernetes clusters and access sensitive information.
The issue is related to authorization misconfigurations that can occur with Kubernetes built-in groups, and the security firm Orca discovered that attackers could access tokens and become part of the system:authenticated group, which could lead to dire consequences.
The attacker’s level of access would be far greater if authenticated users were authorized with extended roles, allowing them to perform reconnaissance, take over the Kubernetes cluster, cause denial of service, or access sensitive information.
Read more: Orca Flags Dangerous Google Kubernetes Engine Misconfiguration
For more such updates follow us on Google News ITsecuritywire News. Please subscribe to our Newsletter for more updates.