Network misconfigurations

GKE using non-private nodes

Risk Level

Informational (4)

Platform(s)
Compliance Frameworks

Description

Disabling public IP addresses on cluster nodes restricts access to only internal networks, forcing attackers to obtain local network access before attempting to compromise the underlying Kubernetes hosts. It was detected that {GcpGkeCluster} is not using private nodes.