Information Disclosure
Risky Feature
Insecure Software Configuration
Abnormal Behaviour
Inadequate Input Validation
Insecure Session Managment
Insecure Software Defaults
Insecure Data Transport
Insecure Authentication
Insecure Data Storage
Information Gathering
Generic Security Finding
Weak Access Controls

Kubernetes Cluster Exposure

Name: SecApps
Rating: 4.50 (6895 reviews)

A publicly exposed Kubernetes cluster was identified.

kubernetes
cluster
version
exposure

Kubernetes systems are relatively easy to identify on the Internet, revealing version information that tells attackers what vulnerabilities they might be subject to.

Impact

Attackers may be able to exploit known vulnerabilities affecting the exposed Kubernetes clusters.

Solution

Ensure that the Kubernetes control plane is only exposed to internal networks.

Was this page helpful?