Delete nodes
Denial of Service
Critical
Overview
| Field | Value |
|---|---|
| ID | 1016 |
| Name | Delete nodes |
| Risk Category | Denial of Service |
| Risk Level | Critical |
| Role Type | ClusterRole |
| API Groups | core |
| Resources | nodes |
| Risky Verb Combinations | [delete] · [deletecollection] |
| Tags | DenialOfService NodeAccess ResourceDeletion |
Description
Grants permission to delete nodes from the cluster. This can lead to a severe denial of service by removing compute capacity, disrupting running applications, and potentially causing data loss for workloads not designed for sudden node disappearance.
Abuse Scenarios
- Delete a specific node from the cluster.
kubectl delete node <node-name>
# Example: kubectl delete node minikube