Aqua Vulnerability Database
Try Aqua
Get Demo
Vulnerabilities
Misconfiguration
Runtime Security
Compliance
Rbac
>
General
> No Wildcard Verb Role
CRITICAL
Source
Trivy
ID
AVD-KSV-0045
No wildcard verb roles
Check whether role permits wildcard verb on specific resources
Impact
Links
https://kubernetes.io/docs/concepts/security/rbac-good-practices/
Aqua Container Security