Update StatefulSet Scale (Resource Abuse/DoS)
Denial of Service
High
Overview
| Field | Value |
|---|---|
| ID | 1097 |
| Name | Update StatefulSet Scale (Resource Abuse/DoS) |
| Risk Category | Denial of Service |
| Risk Level | High |
| Role Type | Role |
| API Groups | apps |
| Resources | statefulsets/scale |
| Verbs | update, patch |
| Tags | DataLoss DenialOfService ResourceModification Tampering WorkloadLifecycle |
Description
Allows updating the ‘scale’ subresource of StatefulSets within a namespace. This can be abused to significantly increase or decrease the number of replicas for a stateful application, potentially leading to resource exhaustion, denial of service, data inconsistencies, or unexpected operational costs.