MITRE, ArmoBest, NSA, YAML-scanning, AllControls
The Kubernetes dashboard is a web-based user interface that enables monitoring and management of the Kubernetes cluster. By default, the dashboard exposes an internal endpoint (ClusterIP service). If the dashboard is exposed externally, it can allow unauthenticated remote management of the cluster.
Checking if Kubernetes dashboard exists deployment and exposed externally as a service (nodeport/loadbalancer), check if the version of the container image is older than v2.0.1 we raise an alert.
Update dashboard version to v2.0.1 and above.
Updated about 2 months ago