TF 0136 - SymbioticSec/Symbiotic-Vulnerability-Database GitHub Wiki
If the kubelet config.yaml configuration file is being used validate permissions set to 600 or more restrictive
| Property | Value |
|---|---|
| Language |  |
| Severity |  |
Description
The kubelet configuration file is set with permissions more permissive than 600, allowing users other than the owner to read or modify sensitive configuration settings. This exposes critical kubelet parameters to unauthorized access.
Impact
If exploited, unauthorized users could access or alter the kubelet's configuration, potentially leading to privilege escalation, disruption of cluster operations, or compromise of node security and sensitive data.
Resolution
Change the kubelet config yaml permissions to 600 or more restrictive if exist