EKS Clusters should have the public access disabled
| Property | |
|---|---|
| Language |  |
| Severity |  |
| Service | eks |
| Provider | AWS |
| Vulnerability Type | misconfiguration |
Description#
The EKS cluster is configured with public access enabled, exposing the cluster endpoint to the internet. This allows unauthenticated network traffic to reach the cluster API from outside the VPC, increasing the attack surface.
Impact#
If public access is enabled, attackers on the internet may attempt to discover, target, and exploit the EKS cluster API. This can lead to unauthorized access, data breaches, or compromise of workloads running within the cluster, significantly impacting organizational security.
Resolution#
Don’t enable public access to EKS Clusters