TF 0466 - SymbioticSec/Symbiotic-Vulnerability-Database GitHub Wiki
Non-core volume types used.
| Property | Value |
|---|---|
| Language |  |
| Severity |  |
Description
The configuration uses non-core (disallowed) Kubernetes volume types in pod specifications, which do not meet the Pod Security Standards for restricted environments. This increases exposure to less secure or deprecated storage backends.
Impact
Using disallowed volume types can introduce security risks such as data leakage, privilege escalation, or access to sensitive host resources, potentially allowing attackers to compromise the cluster or access unauthorized data.
Resolution
Do not Set 'spec.volumes[*]' to any of the disallowed volume types.