Unexploited Vulnerabilities in Kubernetes: How VEX Helps Bring Order to the Noise of CVEs

Kubernetes is a complex ecosystem with many components and dependencies, and common vulnerabilities (CVEs) that, while not all of them are real threats, are often flagged by scanners as reliable threats, creating an overabundance of false production processes and complicating CI/CD processes. Here's how to make sense of this noise.