Skip to content

Commit

Permalink
Update avd_docs/kubernetes/general/AVD-KSV-0108/docs.md
Browse files Browse the repository at this point in the history
  • Loading branch information
@SanaaYousaf
SanaaYousaf authored Nov 25, 2022
1 parent 1fdd7aa commit 6e33766
Showing 1 changed file with 2 additions and 1 deletion.
3 changes: 2 additions & 1 deletion avd_docs/kubernetes/general/AVD-KSV-0108/docs.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -2,7 +2,8 @@
Services with external IP addresses allows direct access from the internet and might expose risk for CVE-2020-8554

### Impact
<!-- Add Impact here -->
Kubernetes API server in all versions allow an attacker who is able to create a ClusterIP service and set the spec.externalIPs field, to intercept traffic to that IP address. Additionally, an attacker who is able to patch the status (which is considered a privileged operation and should not typically be granted to users) of a LoadBalancer service can set the status.loadBalancer.ingress.ip to similar effect.
https://www.cvedetails.com/cve/CVE-2020-8554/

<!-- DO NOT CHANGE -->
{{ remediationActions }}
Expand Down

0 comments on commit 6e33766

Please sign in to comment.