Manage StatefulSets in a namespace
Elevation of Privilege
High
Overview
| Field | Value |
|---|---|
| ID | 1038 |
| Name | Manage StatefulSets in a namespace |
| Risk Category | Elevation of Privilege |
| Risk Level | High |
| Role Type | Role |
| API Groups | apps |
| Resources | statefulsets |
| Verbs | create, update, patch, delete |
| Tags | Persistence PotentialPrivilegeEscalation Tampering WorkloadLifecycle |
Description
Allows creating, updating, or deleting StatefulSets within a specific namespace. This can be used to deploy stateful applications with potentially privileged settings, leading to potential privilege escalation, persistence, and tampering within that namespace.