Manage Ingresses (Namespace Service Exposure/Traffic Redirection)
NetworkManipulation
High
Overview
| Field | Value |
|---|---|
| ID | 1091 |
| Name | Manage Ingresses (Namespace Service Exposure/Traffic Redirection) |
| Risk Category | NetworkManipulation |
| Risk Level | High |
| Role Type | Role |
| API Groups | networking.k8s.io |
| Resources | ingresses |
| Verbs | create, update, patch, delete |
| Tags | DenialOfService NetworkManipulation ServiceExposure Tampering |
Description
Allows creating, updating, or deleting Ingress objects within a namespace. This can be used to expose internal services to external traffic, redirect legitimate traffic to malicious endpoints, or cause denial of service by misconfiguring routing rules.