Kubernetes >

Specific Access to Kubernetes API

HIGH

Source

Kube Hunter

KHV007

kubernetes

Specific Access to Kubernetes API

kube-hunter was able to perform the action specified by the reported vulnerability (check the report for more information). This may or may not be a problem, depending on your cluster setup and preferences.

Recommended Actions

Review the RBAC permissions to Kubernetes API server for the anonymous and default service account.

Links

Using RBAC Authorization
[KHV005 - Access to Kubernetes API]({{ site.baseurl }}{% link _kb/KHV005.md %})

Aqua Container Security

Aqua Security is the largest pure-play cloud native security company, providing customers the freedom to innovate and run their businesses with minimal friction. The Aqua Cloud Native Security Platform provides prevention, detection, and response automation across the entire application lifecycle to secure the build, secure cloud infrastructure and secure running workloads wherever they are deployed.