Executive Summary
A MITM vulnerability was discovered in Conjur Kubernetes authenticator flow that may potentially enable an intranet attacker to gain access to secrets that the Kubernetes POD is authorized to retrieve.
This vulnerability affects all integrations using Conjur Kubernetes authenticator - that is, OpenShift and all Kubernetes supported platforms.
CyberArk highly recommends that all customers who are using Kubernetes authenticator with Conjur Open Source upgrade to Conjur 1.11.2.
For more information
For Conjur Open Source, see the Security Advisory
For Dynamic Access Provider, see the CA21-02 security bulletin