A patched command-injection vulnerability in Kubernetes could allow a remote attacker to gain SYSTEM privileges on all Windows endpoints in a cluster, potentially leading to complete system takeover. The vulnerability, tracked as CVE-2024-9042, affects Kubernetes versions prior to 1.32.1 with beta features enabled and requires the cluster to be running Windows endpoints. Akamai researcher Tomer Peled discovered the flaw and warns that even clusters without Windows nodes should be patched due to the potential for future exploitation.
A now-fixed command-injection bug in Kubernetes can be exploited by a remote attacker to gain code execution with SYSTEM privileges on all Windows endpoints in a cluster, and thus fully take over those systems, according to Akamai researcher Tomer Peled.
Peled found the vulnerability, tracked as CVE-2024-9042, while conducting research for a presentation at last year's DEF CON infosec event aboutThe latest vulnerability received a medium-severity score of 5.9 out of 10, and it affects Kubernetes versions earlier than 1.32.1 with beta features enabled.
Additionally, to exploit CVE-2024-9042, the Kubernetes cluster must not only be running Windows endpoints – the flaw doesn't affect any other OSes – it must be configured to run. This is a new, beta-level mechanism for pulling up the system status of remote machines using a command-line interface or a web API via a tool like Curl.
"Even though there were several steps to make the exploit work, the payload does not require a lot of technical knowledge to create," he said."We expect exploitation to increase because of the ease of creating the payload, it being common knowledge with the disclosure, and the severity of the impact to companies who use this feature."it's really limited to Windows nodes and no longer an active threat.
"CVE-2024-9042 only affects builds of Kubernetes for Windows OS," the K8s bod said."The vulnerable logic was not compiled into builds of Kubernetes used in Linux for affected versions, and Linux hosts running Kubernetes are unaffected.
Kubernetes Vulnerability Command Injection Windows Exploitation
United Kingdom Latest News, United Kingdom Headlines
Similar News:You can also read news stories similar to this one that we have collected from other news sources.
Urgent Windows 10 Upgrade Needed Before October, Microsoft WarnsMicrosoft urges Windows 10 users to upgrade to Windows 11 immediately as free support for Windows 10 ends in October. Users still running Windows 10 after this date may face increased vulnerability to cyber threats and viruses. Microsoft offers three options: upgrade to Windows 11, enroll in the Windows 10 Extended Security Updates Programme (ESU) for a fee, or continue using Windows 10 without security updates.
Read more »
Study reveals AI’s critical flaw in medical decision-makingLarge language models excel at answering medical questions but fail to recognize their knowledge gaps, posing risks in clinical applications.
Read more »
Windows 10 Rebounds as Windows 11 Adoption LagsDespite improvements, Windows 11 struggles to gain traction, while Windows 10 sees a resurgence in market share.
Read more »
Windows 10 Regains Ground as Windows 11 Adoption SlowsMicrosoft is facing an uphill battle with Windows 11 adoption as Windows 10 continues to hold a commanding lead in the desktop operating system market. Statcounter data reveals a decline in Windows 11's share and a corresponding rise in Windows 10's popularity, raising concerns for Microsoft executives.
Read more »
Multi-Tenancy in Kubernetes Clusters for AI WorkloadsThis article explores the use of Kubernetes (K8s) clusters for deploying AI workloads, focusing on multi-tenancy strategies. It delves into the benefits of K8s, the different types of multi-tenancy (team and customer), and the critical considerations for implementing secure and efficient solutions.
Read more »
Microsoft Pushes Windows 11 Adoption Despite Low User UptakeMicrosoft aggressively promotes Windows 11, declaring 2025 'the year of the Windows 11 PC refresh,' while Windows 10 support ends in October 2025. Despite hyping up new features and AI capabilities, user uptake remains low, with Windows 10 still dominant. Microsoft's AI-powered PCs also face criticism for lacking productivity benefits.
Read more »