{"id":3794,"date":"2024-10-24T10:19:53","date_gmt":"2024-10-24T08:19:53","guid":{"rendered":"https:\/\/www.tec4net.com\/web\/?p=3794"},"modified":"2024-10-23T11:19:06","modified_gmt":"2024-10-23T09:19:06","slug":"30756","status":"publish","type":"post","link":"https:\/\/www.tec4net.com\/web\/2024\/10\/24\/30756\/","title":{"rendered":"Kritische Schwachstelle in Kubernetes erm\u00f6glicht Root-Zugriff"},"content":{"rendered":"

In Kubernetes-Systemen wurde eine kritische Sicherheitsl\u00fccke entdeckt, die es Angreifern erm\u00f6glicht, \u00fcber VM-Images via SSH als Root auf Systeme zuzugreifen. Dies kann zu einer vollst\u00e4ndigen Kompromittierung der betroffenen Computer f\u00fchren.<\/p>\n

Besonders kritisch ist die Schwachstelle bei Proxmox, da dort statische Zugangsdaten in den VM-Images eingebettet sind. Bei Nutanix m\u00fcssen Angreifer im Build-Prozess eingreifen, weshalb das Risiko hier als moderat eingestuft wird. Ein Sicherheitspatch behebt das Problem in neuen Images, jedoch m\u00fcssen bestehende Images manuell ersetzt werden, da der Patch diese nicht repariert.<\/p>\n

Quelle:<\/strong>
\nhttps:\/\/www.heise.de\/news\/Sicherheitsupdate-Kritische-Root-Luecke-in-Kubernetes-geschlossen-9985631.html<\/a><\/p>\n

 <\/p>\n

 <\/p>\n

Wir sind Experten f\u00fcr Datenschutz und IT-Sicherheit<\/strong><\/p>\n

Profitieren Sie von unserer umfassenden Beratung zu den Themen Datenschutz und IT-Sicherheit. Unser erfahrenes Team unterst\u00fctzt Sie dabei, Ihre Website und digitalen Dienste datenschutzkonform zu gestalten um die gesetzlichen Vorgaben zu erf\u00fcllen.<\/p>\n

Kontaktieren Sie uns noch heute und sichern Sie sich praxisnahe Beratung zur Umsetzung der DSGVO und Normen wie ISO 27001, PCI-DSS oder TISAX.<\/p>\n

Datenschutz und IT-Sicherheit praktikabel umsetzen – tec4net GmbH<\/strong><\/p>\n

\n

www.tec4net.com<\/a> \u2013 www.it-news-blog.com<\/a> \u2013 www.it-sachverstand.info<\/a> \u2013 www.datenschutz-muenchen.com<\/a><\/p>\n

 <\/p>\n

Alle unsere NEWS unter – https:\/\/www.tec4net.com\/web\/category\/allgemein<\/a><\/span><\/p>\n","protected":false},"excerpt":{"rendered":"

In Kubernetes-Systemen wurde eine kritische Sicherheitsl\u00fccke entdeckt, die es Angreifern erm\u00f6glicht, \u00fcber VM-Images via SSH als Root auf Systeme zuzugreifen. Dies kann zu einer vollst\u00e4ndigen Kompromittierung der betroffenen Computer f\u00fchren. Besonders kritisch ist die Schwachstelle bei Proxmox, da dort statische Zugangsdaten in den VM-Images eingebettet sind. Bei Nutanix m\u00fcssen Angreifer […]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":[],"categories":[1],"tags":[1569,1571,1574,1573,1575,1572,1570],"yoast_head":"\nKritische Schwachstelle in Kubernetes erm\u00f6glicht Root-Zugriff - tec4net<\/title>\n<meta name=\"description\" content=\"Unsere IT-Experten beraten Sie im Bereich Consulting, IT-Security und Datenschutz in M\u00fcnchen | tec4net GmbH - seit 2003\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.tec4net.com\/web\/2024\/10\/24\/30756\/\" \/>\n<meta property=\"og:locale\" content=\"de_DE\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Kritische Schwachstelle in Kubernetes erm\u00f6glicht Root-Zugriff - tec4net\" \/>\n<meta property=\"og:description\" content=\"Unsere IT-Experten beraten Sie im Bereich Consulting, IT-Security und Datenschutz in M\u00fcnchen | tec4net GmbH - seit 2003\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.tec4net.com\/web\/2024\/10\/24\/30756\/\" \/>\n<meta property=\"og:site_name\" content=\"tec4net\" \/>\n<meta property=\"article:published_time\" content=\"2024-10-24T08:19:53+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2024-10-23T09:19:06+00:00\" \/>\n<meta name=\"author\" content=\"Matthias Walter\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Verfasst von\" \/>\n\t<meta name=\"twitter:data1\" content=\"Matthias Walter\" \/>\n\t<meta name=\"twitter:label2\" content=\"Gesch\u00e4tzte Lesezeit\" \/>\n\t<meta name=\"twitter:data2\" content=\"1\u00a0Minute\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\/\/www.tec4net.com\/web\/2024\/10\/24\/30756\/#article\",\"isPartOf\":{\"@id\":\"https:\/\/www.tec4net.com\/web\/2024\/10\/24\/30756\/\"},\"author\":{\"name\":\"Matthias Walter\",\"@id\":\"https:\/\/www.tec4net.com\/web\/#\/schema\/person\/eb2c0c81b5ce5b0320d91188184d409b\"},\"headline\":\"Kritische Schwachstelle in Kubernetes erm\u00f6glicht Root-Zugriff\",\"datePublished\":\"2024-10-24T08:19:53+00:00\",\"dateModified\":\"2024-10-23T09:19:06+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/www.tec4net.com\/web\/2024\/10\/24\/30756\/\"},\"wordCount\":205,\"publisher\":{\"@id\":\"https:\/\/www.tec4net.com\/web\/#organization\"},\"keywords\":[\"ISO 27001 Zertifizierung IT-Sicherheit Bayern\",\"Kubernetes Sicherheitsl\u00fccke in VM-Images beheben\",\"Nutanix Schwachstelle Kubernetes Sicherheitsupdate\",\"Proxmox Sicherheitsl\u00fccke in Kubernetes Images\",\"Sicherheitspatch f\u00fcr Kubernetes VM-Image L\u00fccke\",\"SSH-Root-Zugriff durch Kubernetes Schwachstelle\",\"TISAX-Beratung f\u00fcr Zulieferer in M\u00fcnchen\"],\"inLanguage\":\"de\"},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/www.tec4net.com\/web\/2024\/10\/24\/30756\/\",\"url\":\"https:\/\/www.tec4net.com\/web\/2024\/10\/24\/30756\/\",\"name\":\"Kritische Schwachstelle in Kubernetes erm\u00f6glicht Root-Zugriff - tec4net\",\"isPartOf\":{\"@id\":\"https:\/\/www.tec4net.com\/web\/#website\"},\"datePublished\":\"2024-10-24T08:19:53+00:00\",\"dateModified\":\"2024-10-23T09:19:06+00:00\",\"description\":\"Unsere IT-Experten beraten Sie im Bereich Consulting, IT-Security und Datenschutz in M\u00fcnchen | tec4net GmbH - seit 2003\",\"breadcrumb\":{\"@id\":\"https:\/\/www.tec4net.com\/web\/2024\/10\/24\/30756\/#breadcrumb\"},\"inLanguage\":\"de\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/www.tec4net.com\/web\/2024\/10\/24\/30756\/\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/www.tec4net.com\/web\/2024\/10\/24\/30756\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Startseite\",\"item\":\"https:\/\/www.tec4net.com\/web\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Kritische Schwachstelle in Kubernetes erm\u00f6glicht Root-Zugriff\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/www.tec4net.com\/web\/#website\",\"url\":\"https:\/\/www.tec4net.com\/web\/\",\"name\":\"tec4net\",\"description\":\"Ihr starker IT-Partner\",\"publisher\":{\"@id\":\"https:\/\/www.tec4net.com\/web\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/www.tec4net.com\/web\/?s={search_term_string}\"},\"query-input\":\"required name=search_term_string\"}],\"inLanguage\":\"de\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/www.tec4net.com\/web\/#organization\",\"name\":\"tec4net\",\"url\":\"https:\/\/www.tec4net.com\/web\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"de\",\"@id\":\"https:\/\/www.tec4net.com\/web\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/www.tec4net.com\/web\/wp-content\/uploads\/2018\/12\/t4n_Logo_startseite.png\",\"contentUrl\":\"https:\/\/www.tec4net.com\/web\/wp-content\/uploads\/2018\/12\/t4n_Logo_startseite.png\",\"width\":178,\"height\":163,\"caption\":\"tec4net\"},\"image\":{\"@id\":\"https:\/\/www.tec4net.com\/web\/#\/schema\/logo\/image\/\"}},{\"@type\":\"Person\",\"@id\":\"https:\/\/www.tec4net.com\/web\/#\/schema\/person\/eb2c0c81b5ce5b0320d91188184d409b\",\"name\":\"Matthias Walter\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"de\",\"@id\":\"https:\/\/www.tec4net.com\/web\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/c8945f23c3708dc375c12592ec9c9a7e?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/c8945f23c3708dc375c12592ec9c9a7e?s=96&d=mm&r=g\",\"caption\":\"Matthias Walter\"}}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Kritische Schwachstelle in Kubernetes erm\u00f6glicht Root-Zugriff - tec4net","description":"Unsere IT-Experten beraten Sie im Bereich Consulting, IT-Security und Datenschutz in M\u00fcnchen | tec4net GmbH - seit 2003","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.tec4net.com\/web\/2024\/10\/24\/30756\/","og_locale":"de_DE","og_type":"article","og_title":"Kritische Schwachstelle in Kubernetes erm\u00f6glicht Root-Zugriff - tec4net","og_description":"Unsere IT-Experten beraten Sie im Bereich Consulting, IT-Security und Datenschutz in M\u00fcnchen | tec4net GmbH - seit 2003","og_url":"https:\/\/www.tec4net.com\/web\/2024\/10\/24\/30756\/","og_site_name":"tec4net","article_published_time":"2024-10-24T08:19:53+00:00","article_modified_time":"2024-10-23T09:19:06+00:00","author":"Matthias Walter","twitter_card":"summary_large_image","twitter_misc":{"Verfasst von":"Matthias Walter","Gesch\u00e4tzte Lesezeit":"1\u00a0Minute"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.tec4net.com\/web\/2024\/10\/24\/30756\/#article","isPartOf":{"@id":"https:\/\/www.tec4net.com\/web\/2024\/10\/24\/30756\/"},"author":{"name":"Matthias Walter","@id":"https:\/\/www.tec4net.com\/web\/#\/schema\/person\/eb2c0c81b5ce5b0320d91188184d409b"},"headline":"Kritische Schwachstelle in Kubernetes erm\u00f6glicht Root-Zugriff","datePublished":"2024-10-24T08:19:53+00:00","dateModified":"2024-10-23T09:19:06+00:00","mainEntityOfPage":{"@id":"https:\/\/www.tec4net.com\/web\/2024\/10\/24\/30756\/"},"wordCount":205,"publisher":{"@id":"https:\/\/www.tec4net.com\/web\/#organization"},"keywords":["ISO 27001 Zertifizierung IT-Sicherheit Bayern","Kubernetes Sicherheitsl\u00fccke in VM-Images beheben","Nutanix Schwachstelle Kubernetes Sicherheitsupdate","Proxmox Sicherheitsl\u00fccke in Kubernetes Images","Sicherheitspatch f\u00fcr Kubernetes VM-Image L\u00fccke","SSH-Root-Zugriff durch Kubernetes Schwachstelle","TISAX-Beratung f\u00fcr Zulieferer in M\u00fcnchen"],"inLanguage":"de"},{"@type":"WebPage","@id":"https:\/\/www.tec4net.com\/web\/2024\/10\/24\/30756\/","url":"https:\/\/www.tec4net.com\/web\/2024\/10\/24\/30756\/","name":"Kritische Schwachstelle in Kubernetes erm\u00f6glicht Root-Zugriff - tec4net","isPartOf":{"@id":"https:\/\/www.tec4net.com\/web\/#website"},"datePublished":"2024-10-24T08:19:53+00:00","dateModified":"2024-10-23T09:19:06+00:00","description":"Unsere IT-Experten beraten Sie im Bereich Consulting, IT-Security und Datenschutz in M\u00fcnchen | tec4net GmbH - seit 2003","breadcrumb":{"@id":"https:\/\/www.tec4net.com\/web\/2024\/10\/24\/30756\/#breadcrumb"},"inLanguage":"de","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.tec4net.com\/web\/2024\/10\/24\/30756\/"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/www.tec4net.com\/web\/2024\/10\/24\/30756\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Startseite","item":"https:\/\/www.tec4net.com\/web\/"},{"@type":"ListItem","position":2,"name":"Kritische Schwachstelle in Kubernetes erm\u00f6glicht Root-Zugriff"}]},{"@type":"WebSite","@id":"https:\/\/www.tec4net.com\/web\/#website","url":"https:\/\/www.tec4net.com\/web\/","name":"tec4net","description":"Ihr starker IT-Partner","publisher":{"@id":"https:\/\/www.tec4net.com\/web\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.tec4net.com\/web\/?s={search_term_string}"},"query-input":"required name=search_term_string"}],"inLanguage":"de"},{"@type":"Organization","@id":"https:\/\/www.tec4net.com\/web\/#organization","name":"tec4net","url":"https:\/\/www.tec4net.com\/web\/","logo":{"@type":"ImageObject","inLanguage":"de","@id":"https:\/\/www.tec4net.com\/web\/#\/schema\/logo\/image\/","url":"https:\/\/www.tec4net.com\/web\/wp-content\/uploads\/2018\/12\/t4n_Logo_startseite.png","contentUrl":"https:\/\/www.tec4net.com\/web\/wp-content\/uploads\/2018\/12\/t4n_Logo_startseite.png","width":178,"height":163,"caption":"tec4net"},"image":{"@id":"https:\/\/www.tec4net.com\/web\/#\/schema\/logo\/image\/"}},{"@type":"Person","@id":"https:\/\/www.tec4net.com\/web\/#\/schema\/person\/eb2c0c81b5ce5b0320d91188184d409b","name":"Matthias Walter","image":{"@type":"ImageObject","inLanguage":"de","@id":"https:\/\/www.tec4net.com\/web\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/c8945f23c3708dc375c12592ec9c9a7e?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/c8945f23c3708dc375c12592ec9c9a7e?s=96&d=mm&r=g","caption":"Matthias Walter"}}]}},"_links":{"self":[{"href":"https:\/\/www.tec4net.com\/web\/wp-json\/wp\/v2\/posts\/3794"}],"collection":[{"href":"https:\/\/www.tec4net.com\/web\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.tec4net.com\/web\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.tec4net.com\/web\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.tec4net.com\/web\/wp-json\/wp\/v2\/comments?post=3794"}],"version-history":[{"count":2,"href":"https:\/\/www.tec4net.com\/web\/wp-json\/wp\/v2\/posts\/3794\/revisions"}],"predecessor-version":[{"id":3888,"href":"https:\/\/www.tec4net.com\/web\/wp-json\/wp\/v2\/posts\/3794\/revisions\/3888"}],"wp:attachment":[{"href":"https:\/\/www.tec4net.com\/web\/wp-json\/wp\/v2\/media?parent=3794"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.tec4net.com\/web\/wp-json\/wp\/v2\/categories?post=3794"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.tec4net.com\/web\/wp-json\/wp\/v2\/tags?post=3794"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}