The new Kubernetes CVE (Common Vulnerabilities and Exposures) Pack (CVEs for Kubernetes and ISTIO) contains a group of Insights that can help give you visibility into publicly known Kubernetes and Istio vulnerabilities. InsightCloudSec updates Insights soon after disclosure of new CVEs allowing you to scan your infrastructure to quickly detect application weaknesses.
- This pack includes Insights around vulnerabilities published by the Mitre Corporation - whose CVE Program was created to identify, define, and catalog publicly disclosed vulnerabilities and is sponsored by the U.S. Department of Homeland Security (DHS) and the Cybersecurity and Infrastructure Security Agency (CISA).
- For more details on these type of vulnerabilities you can also visit the National Vulnerability Database.
InsightCloudSec provides our customers with various compliance packs that can help align with a variety of cybersecurity/compliance organizations and their requirements. It is important to note that while InsightCloudSec can offer support for a number of standards, none of the capabilities we offer, including our compliance packs, are intended to individually provide 100% adherence to any security standard.
Before you get started with any compliance packs, you will need to have the following:
- A functioning InsightCloudSec installation
- The appropriate permissions to apply this Compliance Pack to your desired infrastructure
- Kubernetes Security Guardrails enabled on your designated clusters
- Familiarity with your organization’s compliance requirements
If you have questions about implementing this compliance pack or other general questions, reach out to us through the Customer Support Portal.
This is the first edition of this new Kubernetes Compliance Pack and includes 64 Insights. It includes checks around issues like:
- Malicious containers in Kubernetes clusters allowing man-in-the-middle-attacks (CVE-2020-10749)
- Kube-apiserver that could allow node updates to bypass a Validating Admission Webhook (CVE-2021-25735)
- Vulnerability to a denial of service attack via the kubelet API (CVE-2020-8551)
In addition, to explore more details around our automation capabilities, take a look at our documentation on BotFactory.
Updated 8 months ago