GKE Kubernetes API server publicly accessible

Network misconfigurations

GKE Kubernetes API server publicly accessible

Platform(s)

Compliance Frameworks

Brazilian General Data Protection (LGPD)
CCPA
CPRA
Data Security Posture Management (DSPM) Best Practices
GDPR
HITRUST
ISO 27701
iso_27001_2022
iso_27002_2022
Mitre ATT&CK
NIST 800-171
NIST 800-53
PDPA
UK Cyber Essentials

Description

The API server of {GcpGkeCluster} is publicly accessible from anywhere on the internet. This leaves the Kubernetes API server exposed to unauthorized access, reconnaissance attempts and potentially 0-day attacks.

GKE Kubernetes API server publicly accessible

Description

Need help?

CLOUD SECURITY PLATFORM

TECHNOLOGY ECOSYSTEM

By Solution

By Industry

COMPARISONS