Homepage
About Snyk

Container is running without privilege escalation control Affecting Deployment service in Kubernetes

0.0
medium
    Severity Framework Snyk CCSS
    Rule category Containers / Best Practices

Is your enviroment affected by this misconfiguration?

In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.

Test your applications
    Frameworks
    CIS-Controls
  • Snyk ID SNYK-CC-00613
  • credit Snyk Research Team
Report a new misconfiguration Found a mistake?

Description

Processes could elevate current privileges via known vectors, for example SUID binaries.

How to fix?

Set securityContext.allowPrivilegeEscalation to false.

Terraform

References