Manage Endpoints or EndpointSlices in a namespace
NetworkManipulation
High
Overview
| Field | Value |
|---|---|
| ID | 1074 |
| Name | Manage Endpoints or EndpointSlices in a namespace |
| Risk Category | NetworkManipulation |
| Risk Level | High |
| Role Type | Role |
| API Groups | core, discovery.k8s.io |
| Resources | endpoints, endpointslices |
| Verbs | create, update, patch, delete, get, list |
| Tags | DenialOfService NetworkManipulation Tampering TrafficRedirection |
Description
Permits creating, updating, or deleting Endpoints/EndpointSlices for services within a specific namespace. This can lead to traffic redirection, denial of service, or network policy bypass for applications within that namespace.