PT-2026-46126

Summary The environment variables used during the rendering of the Kubernetes manifest allow YAML injection, enabling attackers to overwrite existing keys like securityContext and inject multi-document YAML to create additional unintended Kubernetes resources. Details The server interpolates...

How to find ICA Gateway accessing log in nslog

This article is an analysis on nslog /var/log/ns.log for accessing CVAD environment via ICA gateway. However, nslog will not include detailed logs for this process. Please refer to analysis on "NetScaler Gateway+StoreFront+XenDesktop workflow" in the article in additional resources...

Additional Analysis into the SUNBURST Backdoor | McAfee Blogs

ARCHIVED STORY Additional Analysis into the SUNBURST Backdoor Christiaan Beek · DEC 17, 2020 Executive Summary There has been considerable focus on the recent disclosures associated with SolarWinds, and while existing analysis on the broader campaign has resulted in detection against specific IoC...

Basic Citrix Licensing Information

How does Citrix licensing work? Citrix product goes through a three-step process to check out licenses; information on Licensing overview, visit Citrix Documentation athttps://docs.citrix.com/en-us/licensing/current-release.html Available License types? Visit Citrix Documentation...

Design/Logic Flaw

The API server in Kubernetes does not properly check admission control, which allows remote authenticated users to access additional resources via a crafted patched object...

CVE-2016-1905

The API server in Kubernetes does not properly check admission control, which allows remote authenticated users to access additional resources via a crafted patched object...