CRI-O 命令注入漏洞
CRI-O is a lightweight container runtime environment for Kubernetes systems. CRI-O suffers from a security vulnerability that stems from the ability to inject arbitrary systemd attributes via Pod annotations, which allows any user who can create a Pod using the annotations to perform arbitrary...