An improper file permissions vulnerability affects Kata Containers prior to 1.11.5. When using a Kubernetes hostPath volume and mounting either a file or directory into a container as readonly, the file/directory is mounted as readOnly inside the container, but is still writable inside the guest. For a container breakout situation, a malicious guest can potentially modify or delete files/directories expected to be read-only.
Related Articles
All Mix →Hope in the Fight Against Cyber Threats: A New Year’s Message to CISOs
Table of Contents Facing the Reality: Cybersecurity’s Mounting Pressures Finding Opportunity in Adversity The AI-Human Alliance in Cybersecurity Let’s Build a Resilient Future Together Closing…
How to Connect to an Astaro SSL VPN using OS X
I’ve been stupid for Astaro since the early 00’s and I remain so today. Today I run it in a virtual machine on an ESXi…
Hive Five 227 – Developers, Developers, Developers.
Table of Contents The Bee's Knees Hive Five Premium membership Updates Work Level up The Member Edition I made two new musical discoveries this week:…
Enumerating hard to guess AD username format
Table of Contents Background: Not this time… Thinking outside the box… I quite enjoy external Pentest, especially when the scope is large. There has been…
The Connected Web: Why It’s Time For Strong Authentication
Table of Contents Security Strong Authentication Alternatives Conclusion Links It’s getting exciting in the world of cross-network authentication. Let’s review. I can now: sign into…

