K8s Vulnerabilities

  • Nov 6, 2025

Three New High-Severity Vulnerabilities in runc: What You Need to Know

Within 24 hours, three new high-severity vulnerabilities were disclosed in runc, the low-level runtime that...

Ben Hirschberg

CTO & Co-founder
  • Nov 3, 2025

ARMO Monthly Product Roundup – November 2025 

Hi there,We’ve just dropped a fresh batch of updates to help you cut through the...

Yossi Ben Naim

VP of Product Management
  • Mar 25, 2025

IngressNightmare: Analysis of Critical Vulnerabilities in Kubernetes Ingress NGINX Controller

Executive Summary On March 24, 2025, Wiz Research disclosed a series of critical vulnerabilities in...

Amit Schendel

Head of Security Research
  • Jan 15, 2025

Tackling the recent Kong ingress controller security incident with ARMO’s behavioral CADR

Imagine this situation: you recently updated one of your infrastructure software components. A few weeks...

Ben Hirschberg

CTO & Co-founder
  • Dec 26, 2024

Top cloud-native CVEs of 2024: A Comprehensive Recap

In 2024, several significant vulnerabilities were identified within the Kubernetes and broader cloud-native ecosystem. In...

Oshrat Nir

Head of Product Marketing
  • Oct 10, 2024

The vulnerability puzzle: understanding base images and their relationship to CVEs

Have you ever heard of CVEs? Maybe not by their acronym, but Common Vulnerabilities and...

Jonathan Green

Cloud Security Software Engineer
  • Sep 29, 2024

CVE-2024-7646: Ingress-NGINX Annotation Validation Bypass – A Deep Dive

Introduction Attention: a new Kubernetes vulnerability was uncovered by André Storfjord Kristiansen (@dev-bio on GitHub)...

Amit Schendel

Head of Security Research
  • Sep 28, 2024

CUPS: Unraveling a Critical Vulnerability Chain in Unix Printing Systems

A series of critical vulnerabilities has been uncovered in the Common Unix Printing System (CUPS),...

Amit Schendel

Head of Security Research
  • Apr 3, 2024

Yet another reason why the xz backdoor is a sneaky b@$tard

(We are talking about the xz/libzma backdoor identified with CVE-2024-3094) Summary of the OpenSSH XZ...

Ben Hirschberg

CTO & Co-founder
  • Mar 31, 2024

Bombshell in SSH servers! What CVE-2024-3094 means for Kubernetes users

Read our update: Yet another reason why the xz backdoor is a sneaky b@$tard On...

Amit Schendel

Head of Security Research
  • Dec 19, 2023

Under the hood of CVE patching

Addressing Common Vulnerabilities and Exposures, known as CVE patching, is a practice of applying updates...

Oshrat Nir

Head of Product Marketing
  • Nov 10, 2023

Three new NGINX ingress controller vulnerabilities reported and how they affect Kubernetes

CVE-2023-5043, CVE-2023-5044 and CVE-2022-4886 can be exploited by attacker to steal secret credentials from the...

Ben Hirschberg

CTO & Co-founder
slack_logos Continue to Slack

Get the information you need directly from our experts!

new-messageContinue as a guest