Create/Update ControllerRevisions (Potential Tampering)
Tampering
Medium
Overview
| Field | Value |
|---|---|
| ID | 1085 |
| Name | Create/Update ControllerRevisions (Potential Tampering) |
| Risk Category | Tampering |
| Risk Level | Medium |
| Role Type | Role |
| API Groups | apps |
| Resources | controllerrevisions |
| Verbs | create, update, patch |
| Tags | ControllerRevisionTampering Tampering WorkloadLifecycle |
Description
Allows creating or updating ControllerRevisions. This could be abused to tamper with the history of workloads like Deployments or StatefulSets, potentially forcing rollbacks to vulnerable versions, manipulating state, or obscuring legitimate changes.