HIGH
Source
Kube Hunter
ID
KHV042

Exposed Attaching To Container

An attacker could attach to a running container via a websocket on the kubelet’s /attach endpoint. This endpoint is exposed as part of the kubelet’s debug handlers.

Disable --enable-debugging-handlers kubelet flag.