Kubernetes API Server allows public access Affecting Container service in Azure


Severity

0.0
medium
0
10
Severity Framework
Snyk CCSS
Rule category
Network/ Public Access

Is your environment affected by this misconfiguration?

In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.

Test your applications
Frameworks
CIS-ControlsCSA-CCMSOC-2
  • Snyk IDSNYK-CC-00514
  • creditSnyk Research Team

Description

The Kubernetes API server could be accessible by anyone, which increases attack vector reachability.

How to fix?

Set properties.apiServerAccessProfile.authorizedIPRanges attribute to specific range e.g. 10.0.0.0/16.