Container Security

Kubernetes Infrastructure Security

Security should extend beyond images and workloads and defend the complete environment, as well as the cluster infrastructure. You want to secure your clusters, nodes and also the container engine.

Kubernetes Infrastructure Security Practices

Update your Kubernetes to the most recent version. Because solely the last 3 versions of Kubernetes are supported, as well as security patches for recently disclosed vulnerabilities. So, if a high-severity vulnerability is discovered in Kubernetes and you’re four versions behind, your version won’t receive the patch.
Firmly set up the Kubernetes API server. That is, ensure you disabled the unauthenticated/anonymous access and using TLS encoding for connections between the kubelets and also the API server.
etcd could be a key-value store utilized by Kubernetes for data access. etcd is considered the is taken into account of truth for Kubernetes, and you’ll be able to scan information from and write into it as required. ensure client connections are served solely over TLS.
As the main node agent running on every node, misconfiguring kubelet exposes you to backdoor access through the kubelet. ensure you are disabling the anonymous access to the kubelet by beginning the kubelet with the “–anonymous-auth=false” flag and leverage the NodeRestriction admission controller to limit what the kubelet will access.

Kubernetes includes more elements, together with the kube-scheduler, kube-controller-manager, the configuration files on the master node and work node, etc.

WAF-as-a-Service

Web Application Firewall for Startups

Significance of WAF with Docker

zzcms 2018 template_user.php ml/title code injection

August 26, 2021 No Comments

A vulnerability was found in zzcms 2018 (Content Management System) and classified as critical. This issue affects an unknown function

ZyXEL VPN2S 1.12 Web Server path traversal

September 29, 2021 No Comments

A vulnerability classified as problematic was found in ZyXEL VPN2S 1.12. Affected by this vulnerability is an unknown part of

Zyxel VPN2S 1.12 CGI Program os command injection

September 29, 2021 No Comments

A vulnerability has been found in Zyxel VPN2S 1.12 and classified as critical. This vulnerability affects some unknown processing of

Zyxel USG/USG Flex/Zywall/ATP/VPN up to 4.64 Web-based Management Interface improper authentication

July 2, 2021 No Comments

A vulnerability was found in Zyxel USG, USG Flex, Zywall, ATP and VPN up to 4.64 (Firewall Software). It has

ZyXEL GS1900-8 2.60 LLDP Packet cross site scripting

July 26, 2021 No Comments

A vulnerability was found in ZyXEL GS1900-8 2.60. It has been classified as problematic. This affects an unknown code of

Zynamics BinDiff up to 6 i64 File use after free

June 30, 2021 No Comments

A vulnerability, which was classified as critical, has been found in Zynamics BinDiff up to 6. This issue affects an

CVE-2022-3270 : FESTO VTEM-S1 INSUFFICIENT TECHNICAL DOCUMENTATION

December 2, 2022 No Comments

Description In multiple products by Festo a remote unauthenticated attacker could use functions of an undocumented protocol which could lead

CVE-2022-4221 : ASUS NAS-M25 UP TO 1.0.1.7 COOKIE OS COMMAND INJECTION

December 2, 2022 No Comments

Description Improper Neutralization of Special Elements used in an OS Command (‘OS Command Injection’) vulnerability in Asus NAS-M25 allows an

CVE-2022-45045 : XIONGMAI MBD6304T/NBD6808T-PL JSON FILE DESERIALIZATION

December 1, 2022 No Comments

Description Multiple Xiongmai NVR devices, including MBD6304T V4.02.R11.00000117.10001.131900.00000 and NBD6808T-PL V4.02.R11.C7431119.12001.130000.00000, allow authenticated users to execute arbitrary commands as root,