diff --git a/pkg/kubelet/sysctl/allowlist.go b/pkg/kubelet/sysctl/allowlist.go
index 16bc95fff08..07daa528eac 100644
--- a/pkg/kubelet/sysctl/allowlist.go
+++ b/pkg/kubelet/sysctl/allowlist.go
@@ -116,13 +116,8 @@ func (w *patternAllowlist) Admit(attrs *lifecycle.PodAdmitAttributes) lifecycle.
 		}
 	}
 
-	var hostNet, hostIPC bool
-	if pod.Spec.SecurityContext != nil {
-		hostNet = pod.Spec.HostNetwork
-		hostIPC = pod.Spec.HostIPC
-	}
 	for _, s := range pod.Spec.SecurityContext.Sysctls {
-		if err := w.validateSysctl(s.Name, hostNet, hostIPC); err != nil {
+		if err := w.validateSysctl(s.Name, pod.Spec.HostNetwork, pod.Spec.HostIPC); err != nil {
 			return lifecycle.PodAdmitResult{
 				Admit:   false,
 				Reason:  ForbiddenReason,