Análise de segurança do Kubernetes: vulnerabilidades, CVEs e exploração

Kubernetes is one of the most used container orchestrators of the world, being used to implement a microservices architecture. It offers various features, e.g., load balancer, Application Programming Interface (API) for control, scheduler, storage, etc. This amount of services increases the attack surface and good configuration becomes hard, so an attacker could exploit the cluster vulnerabilities. This article aims to analyze the main vulnerabilities of Kubernetes, performing an experiment demonstrating the impact that an attacker can do when exploiting components vulnerabilities on a cluster.