Escalate privileges via ClusterRoles (escalate verb)
Elevation of Privilege
Critical
Overview
| Field | Value |
|---|---|
| ID | 1031 |
| Name | Escalate privileges via ClusterRoles (escalate verb) |
| Risk Category | Elevation of Privilege |
| Risk Level | Critical |
| Role Type | ClusterRole |
| API Groups | rbac.authorization.k8s.io |
| Resources | clusterroles |
| Verbs | escalate |
| Tags | ClusterAdminAccess PrivilegeEscalation RBACManipulation |
Description
Permits using the ’escalate’ verb on ClusterRoles (or Roles). This allows a user to create or update a role with more permissions than they currently possess, up to the permissions defined in the role they are escalating, leading to direct privilege escalation.