PT-2022-27692 · Kubeview · Kubeview
Name of the Vulnerable Software and Affected Versions: KubeView versions 0.1.31 and earlier Description: The issue allows attackers to obtain control of a Kubernetes cluster because the api/scrape/kube-system endpoint does not require authentication, and it retrieves certificate files that can be...