CVE-2021-167712.01.2021, 20:15Azure Active Directory Pod Identity Spoofing VulnerabilityEnginsightSeverityMEDIUMCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:NAtk. VectorLOCALAtk. ComplexityLOWPriv. RequiredLOWBase ScoreCVSS 3.xEPSS ScorePercentile: 47%VendorProductVersionmicrosoftazure_kubernetes_service-𝑥= Vulnerable software versionsCommon Weakness EnumerationCWE-290 - Authentication Bypass by SpoofingThis attack-focused weakness is caused by improperly implemented authentication schemes that are subject to spoofing attacks.Referenceshttps://msrc.microsoft.com/update-guide/vulnerability/CVE-2021-1677https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-1677