Ray AI Framework Vulnerability Exploited to Hack Hundreds of Clusters
March 27, 2024 at 08:48AM Attackers have been exploiting a missing authentication vulnerability in the Ray AI framework, allowing them to compromise hundreds of clusters. The issue, identified as CVE-2023-48022, enables the submission of arbitrary system commands and access to sensitive information. Oligo reports numerous compromised clusters, including potential cryptomining and unauthorized access to cloud … Read more