Update PodDisruptionBudget Status (Namespace Tampering/DoS)
Tampering
Medium
Overview
| Field | Value |
|---|---|
| ID | 1094 |
| Name | Update PodDisruptionBudget Status (Namespace Tampering/DoS) |
| Risk Category | Tampering |
| Risk Level | Medium |
| Role Type | Role |
| API Groups | policy |
| Resources | poddisruptionbudgets/status |
| Verbs | create, update, patch |
| Tags | AvailabilityImpact DenialOfService Tampering |
Description
Allows creating or updating the status of PodDisruptionBudget (PDB) objects within a namespace. This could be used to misrepresent the health or disruption allowance of workloads, potentially leading to unintended disruptions or bypassing availability safeguards.