CVE-2023-32191

When RKE provisions a cluster, it stores the cluster state in a configmap called full-cluster-state inside the kube-system namespace of the cluster itself. The information available in there allows non-admin users to escalate to admin...

GO-2024-2930 RKE credentials are stored in the RKE1 Cluster state ConfigMap in github.com/rancher/rke

When RKE provisions a cluster, it stores the cluster state in a configmap called "full-cluster-state" inside the "kube-system" namespace of the cluster itself. This cluster state object contains information used to set up the K8s cluster, which may include sensitive data...

PT-2024-4208 · Rancher · Rancher Kubernetes Engine +1

Name of the Vulnerable Software and Affected Versions: Rancher Kubernetes Engine RKE versions prior to 1.4.19 Rancher Kubernetes Engine RKE versions prior to 1.5.10 Rancher versions prior to 2.7.14 Rancher versions prior to 2.8.5 Description: The issue is related to the storage of cluster state i...

How to Exclude Applications from Dashboard & Compliance Reporting

Purpose This article provides steps to exclude system namespaces from the Veeam Kasten for Kubernetes dashboard and compliance reporting. Solution Explanation Veeam Kasten for Kubernetes automatically discovers all application namespaces of the cluster on which it is deployed. Each of these...

SUSE CVE-2023-32191

When RKE provisions a cluster, it stores the cluster state in a configmap called full-cluster-state inside the kube-system namespace of the cluster itself. The information available in there allows non-admin users to escalate to admin...

PT-2023-22819 · Unknown · Clusternet

Name of the Vulnerable Software and Affected Versions: Clusternet versions prior to 0.15.2 Description: Clusternet is a general-purpose system for controlling Kubernetes clusters across different environments. An issue in Clusternet can be leveraged to lead to a cluster-level privilege escalation...