Read ConfigMaps in a namespace
Information Disclosure
Medium
Overview
| Field | Value |
|---|---|
| ID | 1023 |
| Name | Read ConfigMaps in a namespace |
| Risk Category | Information Disclosure |
| Risk Level | Medium |
| Role Type | Role |
| API Groups | core |
| Resources | configmaps |
| Verbs | get, list, watch |
| Tags | ConfigMapAccess DataExposure InformationDisclosure |
Description
Permits reading ConfigMaps within a specific namespace. This can lead to information disclosure if ConfigMaps store sensitive configuration details, connection strings, or other exploitable data for applications within that namespace.