1 Answer
- Newest
- Most votes
- Most comments
0
EKS an ELBs are both in-scope for AWS PCI assessments (https://aws.amazon.com/compliance/services-in-scope/PCI/), so they should be good with regards to meeting the requirements (assuming your solution was architected correctly with them ;) ).
It is possible that you are getting this from the ingress/container side. CVE-2004-0230 has been around since 2004 and vendors have all dealt with it in different ways, especially OS vendors. Some have stated it is not a concern and won't be touched (https://access.redhat.com/security/cve/cve-2004-0230) as there are other mitigating controls.
answered a year ago
Relevant content
- asked a year ago
- asked 10 months ago
- AWS OFFICIALUpdated 2 months ago
- AWS OFFICIALUpdated a year ago
- AWS OFFICIALUpdated 2 years ago
- AWS OFFICIALUpdated 2 years ago