Shielded GKE nodes not enabled.
| Property | |
|---|---|
| Language |  |
| Severity |  |
| Service | gke |
| Provider | |
| Vulnerability Type | misconfiguration |
Description#
GKE clusters are configured without Shielded Nodes, meaning node identity and integrity verification features are not enabled. This leaves the nodes more susceptible to tampering or unauthorized modifications.
Impact#
Without Shielded Nodes, attackers could compromise the underlying node infrastructure, potentially leading to undetected node-level attacks, privilege escalation, or data breaches that jeopardize cluster security and workload integrity.
Resolution#
Enable node shielding