Blog Security Research Exploit Me, Baby, One More Time: Command Injection in Kubernetes Log Query Tomer Peled is a Security Researcher at Akamai. In his daily job, he conducts research ranging from vulnerability research to OS internals. In his free time, he likes to cook, do Krav Maga, and game on his PC. If you haven’t patched this vulnerability yet, it’s a good idea to prioritize this one. Editorial and additional commentary by Tricia Howard Executive summary \r\n Akamai security researcher Tomer Peled recently discovered a vulnerability in Kubernetes that was assigned CVE-2024-9042 . \r\n \r\n \r\n \r\n The vulnerability allows remote code execution (RCE) with SYSTEM privileges on all Windows endpoints within a Kubernetes cluster. To exploit this vulnerability, the cluster must be configured to run the new logging mechanism “Log Query.” \r\n \r\n The vulnerability can be triggered with a simple GET request to the remote node.…