List ValidatingWebhookConfigurations (Reconnaissance)
Information Disclosure
Medium
Overview
| Field | Value |
|---|---|
| ID | 1083 |
| Name | List ValidatingWebhookConfigurations (Reconnaissance) |
| Risk Category | Information Disclosure |
| Risk Level | Medium |
| Role Type | ClusterRole |
| API Groups | admissionregistration.k8s.io |
| Resources | validatingwebhookconfigurations |
| Risky Verb Combinations | [list] · [watch] |
| Tags | InformationDisclosure Reconnaissance WebhookReconnaissance |
Description
Allows listing of ValidatingWebhookConfigurations cluster-wide. This reveals information about admission control mechanisms and security policies enforced, aiding attackers in understanding defense postures.
Abuse Scenarios
- List all ValidatingWebhookConfigurations.
kubectl get validatingwebhookconfigurations