Site icon API Security Blog

Authentication Bypass

github.com/kubernetes/kubernetes is vulnerable to Authentication Bypass. The vulnerability exists because of improper node address validation in the `ResourceLocation` function of `strategy.go`, allowing an attacker to bypass the proxy address validation and send malicious requests to the API server’s private network.Read More

Exit mobile version