Description
It was found that the API server pod specification file's owner is not set to root. Setting the file's owner to a low privileged user allows the modification of the file by this user and expose the configuration file to unwanted modification.