MEDIUM
Source
Trivy
ID
AVD-KSV-0026

Unsafe sysctl options set

Sysctls can disable security mechanisms or affect all containers on a host, and should be disallowed except for an allowed ‘safe’ subset. A sysctl is considered safe if it is namespaced in the container or the Pod, and it is isolated from other Pods or processes on the same Node.

Impact