According to cybersecurity company Palo Alto Networks, an attacker with access to a Kubernetes cluster could use two vulnerabilities in Google Kubernetes Engine (GKE) to escalate privileges and take control of the cluster.
The issues were found in Anthos Service Mesh (ASM) and FluentBit, the GKE default logging agent. These problems might not be dangerous on their own. Since March 2023, FluentBit, a lightweight log processor and forwarder, has been the standard logging agent in GKE.
It was initially installed as a DaemonSet (controller). Google’s version of the open-source Istio Service Mesh project, known as ASM, is used for service management and visualization.
Read More: Vulnerabilities in Google Kubernetes Engine Could Allow Cluster Takeover
For more such updates follow us on Google News ITsecuritywire News. Please subscribe to our Newsletter for more updates.