Detections
Analytics

Kubernetes Configuration Detected

medium Web App Scanning Plugin ID 115079

Language:

Synopsis

Kubernetes Configuration Detected

Description

Kubernetes is an open-source container orchestration platform used to automate the deployment, scaling, and management of containerized applications. Kubernetes configuration files, such as YAML manifests, define resources like Deployments, Services, ConfigMaps, and Secrets.\n\nWhen exposed with the web application, these configuration files can be used by an attacker to gain access to sensitive information, including cluster architecture details, environment variables, and potentially secrets or credentials.

Solution

Ensure that Kubernetes configuration files (such as YAML manifests defining Deployments, Services, ConfigMaps, and Secrets) are not deployed with the application or exposed in a web server directory. Set proper permissions to restrict access to these files. If sensitive information like credentials or secrets are leaked in the exposed configuration, they should be revoked and reset on the affected assets.

See Also

https://kubernetes.io/

https://kubernetes.io/docs/concepts/configuration/secret/

Plugin Details

Severity: Medium

ID: 115079

Type: remote

Published: 12/17/2025

Updated: 12/17/2025

Scan Template: api, basic, full, pci, scan

Risk Information

VPR

Risk Factor: Low

Score: 1.4

CVSS v2

Risk Factor: Medium

Base Score: 5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N

CVSS Score Source: Tenable

CVSS v3

Risk Factor: Medium

Base Score: 5.3

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

CVSS Score Source: Tenable

CVSS v4

Risk Factor: Medium

Base Score: 6.9

Vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N

CVSS Score Source: Tenable

Reference Information