Controller creating pods with hostIPC enabled

Lateral movement

Controller creating pods with hostIPC enabled

Risk Level

Informational (4)

Platform(s)

Compliance Frameworks

AKS CIS
CCPA
CPRA
EKS CIS
GKE CIS
ISO/IEC 27001
K8s CIS
Mitre ATT&CK
NIST 800-171
NIST 800-53
PDPA
UK Cyber Essentials

Description

hostIPC when set to true allows a pod to have access to the host IPC namespace. Controller {K8sController} was found configured with settings that allows creating a pod with access to the host IPC namespace. The pod security attributes are responsible for limiting the potential attack vector beyond the pod-level context. An adversary can use these misconfiguration to compromise the cluster.

Recommended Mitigation

Consider to disable the following attributes: HostIPC

Controller creating pods with hostIPC enabled

Description

Need help?

CLOUD SECURITY PLATFORM

TECHNOLOGY ECOSYSTEM

By Solution

By Industry

COMPARISONS