Role or ClusterRole with dangerous permissions Affecting RoleBinding service in Kubernetes

Is your environment affected by this misconfiguration?

In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.

Test your applications

Frameworks

CIS-ControlsCIS-Kubernetes-FoundationsCSA-CCM

Snyk IDSNYK-CC-K8S-47
creditSnyk Research Team

Report a new misconfiguration Found a mistake?

Description

Using this role grants dangerous permissions. For a ClusterRole this would be considered high severity.

How to fix?

Consider removing these permissions

References

https://kubernetes.io/docs/reference/access-authn-authz/rbac/