mirror of
https://github.com/aquasecurity/kube-hunter.git
synced 2026-05-24 10:02:50 +00:00
660 B
660 B
vid, title, categories
| vid | title | categories | |
|---|---|---|---|
| KHV007 | Specific Access to Kubernetes API |
|
{{ page.vid }} - {{ page.title }}
Issue description
kube-hunter was able to perform the action specified by the reported vulnerability (check the report for more information). This may or may not be a problem, depending on your cluster setup and preferences.
Remediation
Review the RBAC permissions to Kubernetes API server for the anonymous and default service account.
References
- Using RBAC Authorization
- [KHV005 - Access to Kubernetes API]({{ site.baseurl }}{% link _kb/KHV005.md %})