List Namespaces (Cluster Reconnaissance)
Information Disclosure
Low
Overview
| Field | Value |
|---|---|
| ID | 1082 |
| Name | List Namespaces (Cluster Reconnaissance) |
| Risk Category | Information Disclosure |
| Risk Level | Low |
| Role Type | ClusterRole |
| API Groups | core |
| Resources | namespaces |
| Risky Verb Combinations | [list] · [watch] |
| Tags | ClusterStructure InformationDisclosure Reconnaissance |
Description
Allows listing all namespaces in the cluster. This helps an attacker map out the cluster structure, identify potential targets, and understand workload separation. It’s a foundational reconnaissance step.
Abuse Scenarios
- List all namespaces in the cluster.
kubectl get namespaces