H3-2022-0026¶

Unauthenticated Access to Kubeflow

Description¶

The Kubeflow application requires no authentication to configure and deploy containers.

Impact¶

An unauthenticated attacker can access all functionality of Kubeflow to extract sensitive data from existing containers and even deploy new containers to launch crypto-mining attacks.

References¶

• Misconfigured Kubeflow Leads to Cryptomining Attack
• Authentication
• Getting Started with Multi-user Isolation
• MITRE ATT&CK Technique: T1613: Container and Resource Discovery