Are you drowning in a sea of Kubernetes CVE alerts? With new vulnerabilities emerging constantly, it's challenging to separate the vulnerabilities that can be fixed and addressed appropriately within an ecosystem of noise.

Not all threats are created equal, so how do you focus on what truly puts your clusters at risk? How do you know where to enforce the guardrails, and when is time to hight "acceptable risk" in Kubernetes.

This demo-first session cuts through the hype to provide a practical approach to vulnerability management.

We'll show you how to move beyond simple scores and assess the actual likelihood of exploitation within your cluster.

By correlating vulnerabilities with real-world threat intelligence from the Exploit Prediction Scoring System (EPSS), ExploitDB, and the CISA Known Exploited Vulnerabilities (KEV) catalog, you'll learn to prioritise with confidence.

We will conduct a deep dive into critical vulnerabilities, including but not limited to:

• CVE-2020-8561: Webhook redirect in Kube API Server
• CVE-2020-8562: Bypass of Kubernetes API Server proxy TOCTOU
• CVE-2021-25740: Endpoint & EndpointSlice permissions allow cross-Namespace forwarding

Join us for a live demo on how to identify these threats in your environment and get actionable mitigation advice to stay safe.

You'll leave with a clear framework for analysing and addressing the Kubernetes vulnerabilities that matter most.