Vulnerability Discovered in Kubernetes Capsule
Date: October 2023
Overview
Researchers have identified a significant vulnerability in Kubernetes Capsule, specifically in version v0.10.3 and earlier. This flaw enables authenticated tenant users to inject arbitrary labels into the system.
Implications
The ability to inject arbitrary labels poses potential security risks, as it may allow unauthorized modifications or access to resources within the Kubernetes environment.