Kubernetes unprivileged API access
High Nessus Plugin ID 110768
SynopsisKubernetes allows unauthenticated command execution via API access if not configured properly.
DescriptionA remote, unauthenticated attacker is able to leverage API calls to execute commands and scripts or gain shell access via port 10250 (https)
SolutionOnly allow localhost connections, set up firewall and authentication.