services / Google Cloud / Kubernetes Engine Services

Services provide a stable network endpoint for one or more pods, allowing them to be accessed by other pods or external clients.

Services control how your Kubernetes Pods are exposed on the Kubernetes network.


container.​services.​get

Retrieve status information such as Pod selector, IP (virtual), port. Additionally, load-balancer information is returned, if any: public IP, port, host name.

Risks

Scope: MEDIUM

This privilege may grant access to confidential data, or its exploit can incur operational cost.

Links

  • https:​/​/​kubernetes.​io/​docs/​concepts/​services-​networking/​service
  • https:​/​/​kubernetes.​io/​docs/​reference/​generated/​kubernetes-​api/​v1.​26/​#​loadbalancerstatus-​v1-​core
  • Contributed by P0 Security

    © 2023–present P0 Security and contributors to the IAM Privilege Catalog