Nirmata

Rapid Mitigation of CVE-2023-2878 with Kyverno and Nirmata Control Hub

A recently discovered vulnerability (CVE-2023-2878) in the secrets-store-csi-driver component of Kubernetes poses a significant security risk. If exploited, this vulnerability could result in the disclosure of sensitive service account tokens. Service account tokens function as authentication credentials, allowing applications operating within a Kubernetes cluster to…

0

Towards CVE-Free Images

This blog post was co-authored by Suhas Gumma and Harshit Raj.  Introduction The acronym CVE stands for “Common Vulnerabilities and Exposures,” a publicly known information security vulnerabilities and exposures database. Each entry in the CVE dictionary identifies a unique vulnerability or exposure and includes critical…

0