Скачать или смотреть Your Kubernetes Clusters Are NOT Safe! | IngressNightmare Explained

Train Your Engineers in Secure Coding and DevSecOps: https://www.appsecengineer.com/enterp...

Ingress-NGINX is a Kubernetes Ingress controller that leverages NGINX as a reverse proxy and load balancer. Its function is to manage and route traffic from external source to various services inside a Kubernetes cluster. The four vulnerabilities specifically affect the admission controller component of NGINX Controller for Kubernetes, which is responsible for validating and/or modifying incoming Ingress objects and other resources before they are processed by the API server.

The vulnerabilities allow a remote, unauthenticated attacker to execute arbitrary commands in affected environments and completely take over Kubernetes clusters, according to researchers at Wiz who discovered the flaws.

In this video, Abhay Bhargav explains how the IngressNightmare exploit works, how it could affect your Kubernetes clusters, and what can be done to prevent your infrastructure from being compromised.

#appsec #applicationsecurity #appsecengineer #securecoding #infosectraining #cybersecurity #kubernetes #containersecurity

00:00 Introduction to Ingress Nightmare Vulnerability
00:45 Understanding Kubernetes Ingress Controllers
01:41 Details of the NGINX Ingress Controller Vulnerability
02:33 How the Vulnerability Works
05:10 Implications and Severity of the Vulnerability
07:19 Mitigation and Patching Recommendations


References:
Wiz.IO Disclosure Website for IngressNightmare: https://www.wiz.io/blog/ingress-nginx...