CVE-2023-3676

Summary

CVE-2023-3676 is a new vulnerability affecting Kubernetes clusters that include Windows nodes. This issue grants users with the ability to create pods on these nodes the potential to escalate their privileges to admin level. If exploited, an attacker could take control of the Windows nodes in the cluster and cause significant damage. The full impact of this vulnerability is still under investigation, but it is recommended that organizations using Kubernetes with Windows nodes apply updates or patches as soon as they become available.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.