Modify secrets cluster-wide
Tampering
Critical
Overview
| Field | Value |
|---|---|
| ID | 1012 |
| Name | Modify secrets cluster-wide |
| Risk Category | Tampering |
| Risk Level | Critical |
| Role Type | ClusterRole |
| API Groups | core |
| Resources | secrets |
| Verbs | create, update, patch, delete |
| Tags | ClusterWideSecretAccess Persistence PrivilegeEscalation Tampering |
Description
Allows creating, updating, patching, or deleting secrets in any namespace across the cluster. This is highly critical as it enables an attacker to inject malicious credentials, tamper with existing secrets, or delete critical ones, leading to privilege escalation, persistence, and service disruption.