{"vulnerability": "CVE-2020-8562", "sightings": [{"uuid": "a0d4cdab-a784-46f8-b6cd-5b57491ffea7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-8562", "type": "seen", "source": "https://bsky.app/profile/kubernetes.io/post/3m2cdydn3gx2a", "content": "", "creation_timestamp": "2025-10-03T15:09:23.931228Z"}, {"uuid": "ef7ba875-4a3b-42e8-b0d8-83673c5d444b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-8562", "type": "seen", "source": "https://bsky.app/profile/pmloik.bsky.social/post/3m2dipb5bv52k", "content": "", "creation_timestamp": "2025-10-04T02:06:27.856177Z"}, {"uuid": "e109c34f-6bfb-4683-846b-be4ccdea3e66", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-8562", "type": "seen", "source": "https://bsky.app/profile/kubernetes.dev/post/3lzzdje7iaj24", "content": "", "creation_timestamp": "2025-09-30T01:07:04.153342Z"}, {"uuid": "0b605caf-6576-4f47-bdc5-7d8c795b025d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-8562", "type": "seen", "source": "https://bsky.app/profile/bluesky.awakari.com/post/3lzzajt6e3g27", "content": "", "creation_timestamp": "2025-09-30T00:13:37.825873Z"}, {"uuid": "b09e9972-dcd3-413e-a4e1-2522fc5bc0d0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-8562", "type": "seen", "source": "https://bsky.app/profile/Kubernetes.activitypub.awakari.com.ap.brid.gy/post/3mj4kc7mmpbn2", "content": "", "creation_timestamp": "2026-04-10T05:04:18.253260Z"}, {"uuid": "941b36fd-1734-4d63-b0d9-bfda25e5590f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-8562", "type": "seen", "source": "https://bsky.app/profile/cyberresearch.bsky.social/post/3mj4luzlnn62q", "content": "", "creation_timestamp": "2026-04-10T05:32:38.857603Z"}, {"uuid": "3ef2bfb7-1654-4993-a050-ad0a4311305f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-8562", "type": "seen", "source": "https://bsky.app/profile/hendryadrian.bsky.social/post/3mj4px3vmia2l", "content": "", "creation_timestamp": "2026-04-10T06:45:23.336414Z"}, {"uuid": "af527983-cce0-4d98-a759-62eb4bcfa040", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-8562", "type": "published-proof-of-concept", "source": "https://t.me/k8security/354", "content": "\u041f\u0440\u043e\u0434\u043e\u043b\u0436\u0438\u043c \u0442\u0435\u043c\u0443 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0435\u0439 \u0438 \u0441\u0435\u0433\u043e\u0434\u043d\u044f \u0440\u0430\u0441\u0441\u043c\u043e\u0442\u0440\u0438\u043c \"\u0441\u0442\u0430\u0440\u0443\u044e\", \u043d\u043e \u0438\u043d\u0442\u0435\u0440\u0435\u0441\u043d\u0443\u044e \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0432 \u0441\u0430\u043c\u043e\u043c Kubernetes \u043f\u043e\u0434 \u0438\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440\u043e\u043c CVE-2020-8562. \u0414\u0435\u0442\u0430\u043b\u044c\u043d\u043e\u0435 \u043e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 \u0434\u0430\u043d\u043d\u043e\u0439 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u043e\u043f\u0443\u0431\u043b\u0438\u043a\u043e\u0432\u0430\u043b\u0438 \u0441\u043e\u0432\u0441\u0435\u043c \u043d\u0435\u0434\u0430\u0432\u043d\u043e \u0432 \u0441\u0442\u0430\u0442\u044c\u0435 \"Kubernetes Vulnerability Discovered That Allows Access to Restricted Networks (CVE-2020-8562)\".\n\n\u041e\u0441\u043d\u043e\u0432\u043d\u043e\u0435:\n1) \u041f\u0440\u043e\u0431\u043b\u0435\u043c\u0430 \u0441\u043a\u043e\u0440\u0435\u0435 \u0430\u043a\u0442\u0443\u0430\u043b\u044c\u043d\u0430 \u0434\u043b\u044f \u043e\u0431\u043b\u0430\u0447\u043d\u044b\u0445 \u043f\u0440\u043e\u0432\u0430\u0439\u0434\u0435\u0440\u043e\u0432, \u043f\u0440\u0435\u0434\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u044e\u0449\u0438\u0439 \u0443\u0441\u043b\u0443\u0433\u0443 managed Kubernetes (\u0431\u0435\u0437 \u0434\u043e\u0441\u0442\u0443\u043f\u0430 \u043a control plane)\n2) \u041f\u0430\u0442\u0447\u0430 \u043d\u0435 \u043f\u043b\u0430\u043d\u0438\u0440\u0443\u0435\u0442\u0441\u044f - \u0442\u043e\u043b\u044c\u043a\u043e \u0432\u0440\u0435\u043c\u0435\u043d\u043d\u044b\u0439 mitigation\n3) \u0418\u0437\u0432\u0435\u0441\u0442\u043d\u0430 \u0441 \u0430\u043f\u0440\u0435\u043b\u044f 2020, \u0430 \u0448\u0438\u0440\u043e\u043a\u043e\u0439 \u0430\u0443\u0434\u0438\u0442\u043e\u0440\u0438\u0438 \u0441 \u043c\u0430\u044f 2021\n4) \u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 http(s) proxy \u0434\u043e\u0441\u0442\u0443\u043f \u043a kube-apiserver localhost \u0438 linklocal (cloud metadata)\n5) \u0414\u043b\u044f \u0430\u0442\u0430\u043a\u0438 \u0430\u0442\u0430\u043a\u0443\u044e\u0449\u0438\u0439 \u0434\u043e\u043b\u0436\u0435\u043d \u0443\u043c\u0435\u0442\u044c \u0441\u043e\u0437\u0434\u0430\u0432\u0430\u0442\u044c \u0444\u0435\u0439\u043a\u043e\u0432\u0443\u044e Node, \u043a\u043e\u0442\u043e\u0440\u0430\u044f \u0431\u0443\u0434\u0435\u0442 \u0438\u043c\u0435\u0442\u044c \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u043b\u044c\u043d\u044b\u0439 \u0441\u0435\u0442\u0435\u0432\u043e\u0439 \u0430\u0434\u0440\u0435\u0441\n\nIMHO  \u044d\u0442\u043e \u043e\u0442\u043b\u0438\u0447\u043d\u044b\u0439 \u043f\u0440\u0438\u043c\u0435\u0440, \u043a\u043e\u0433\u0434\u0430, \u043f\u043e\u0441\u043c\u043e\u0442\u0440\u0435\u0432 \u043d\u0430 \u0441\u0438\u0441\u0442\u0435\u043c\u0443 \u043f\u043e\u0434 \u043e\u043f\u0440\u0435\u0434\u0435\u043b\u0435\u043d\u043d\u044b\u043c \u0443\u0433\u043b\u043e\u043c (\u0432 \u043e\u043f\u0440\u0435\u0434\u0435\u043b\u0435\u043d\u043d\u043e\u0439 \u043c\u043e\u0434\u0435\u043b\u0438 \u0443\u0433\u0440\u043e\u0437, \u043c\u043e\u0434\u0435\u043b\u0438 \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0430) \u043c\u043e\u0436\u043d\u043e \u043d\u0430\u0439\u0442\u0438 \u043e\u0447\u0435\u043d\u044c \u0438\u043d\u0442\u0435\u0440\u0435\u0441\u043d\u044b\u0435 \u0432\u0435\u0449\u0438. \u0418 \u043a\u0442\u043e \u0437\u043d\u0430\u0435\u0442 \u0441\u043a\u043e\u043b\u044c\u043a\u043e \u043f\u043e\u0434\u043e\u0431\u043d\u044b\u0445 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0435\u0439 \u0435\u0449\u0435 \u0435\u0441\u0442\u044c \u0432 \u043e\u0431\u043b\u0430\u043a\u0430\u0445?!", "creation_timestamp": "2021-07-29T06:25:18.000000Z"}]}