2024-03-11 04:04:56,271 INFO kube_hunter.modules.report.collector Started hunting 2024-03-11 04:04:56,272 INFO kube_hunter.modules.report.collector Discovering Open Kubernetes Services 2024-03-11 04:04:56,526 INFO kube_hunter.modules.report.collector Found open service "Kubelet API" at 172.20.138.114:10250 2024-03-11 04:04:56,532 INFO kube_hunter.modules.report.collector Found open service "Kubelet API" at 172.20.138.136:10250 2024-03-11 04:04:56,554 INFO kube_hunter.modules.report.collector Found open service "Kubelet API" at 172.20.138.162:10250 2024-03-11 04:04:56,561 INFO kube_hunter.modules.report.collector Found open service "Kubelet API" at 172.20.138.122:10250 2024-03-11 04:04:56,569 INFO kube_hunter.modules.report.collector Found open service "Kubelet API" at 172.20.138.154:10250 2024-03-11 04:04:56,573 INFO kube_hunter.modules.report.collector Found open service "Etcd" at 172.20.138.170:2379 2024-03-11 04:04:56,673 INFO kube_hunter.modules.report.collector Found open service "Kubelet API" at 172.20.138.128:10250 2024-03-11 04:04:56,679 INFO kube_hunter.modules.report.collector Found open service "Kubelet API" at 172.20.138.102:10250 2024-03-11 04:04:56,687 INFO kube_hunter.modules.report.collector Found open service "Kubelet API" at 172.20.138.194:10250 2024-03-11 04:04:56,717 INFO kube_hunter.modules.report.collector Found open service "Kubelet API" at 172.20.138.111:10250 2024-03-11 04:04:56,746 INFO kube_hunter.modules.report.collector Found open service "Kubelet API" at 172.20.138.180:10250 2024-03-11 04:04:56,837 INFO kube_hunter.modules.report.collector Found open service "Kubelet API" at 172.20.138.170:10250 2024-03-11 04:04:57,139 INFO kube_hunter.modules.report.collector Found open service "API Server" at 172.20.138.170:6443 2024-03-11 04:04:57,209 INFO kube_hunter.modules.report.collector Found vulnerability "K8s Version Disclosure" in 172.20.138.170:6443 Nodes +-------------+----------------+ | TYPE | LOCATION | +-------------+----------------+ | Node/Master | 172.20.138.194 | +-------------+----------------+ | Node/Master | 172.20.138.180 | +-------------+----------------+ | Node/Master | 172.20.138.170 | +-------------+----------------+ | Node/Master | 172.20.138.162 | +-------------+----------------+ | Node/Master | 172.20.138.154 | +-------------+----------------+ | Node/Master | 172.20.138.136 | +-------------+----------------+ | Node/Master | 172.20.138.128 | +-------------+----------------+ | Node/Master | 172.20.138.122 | +-------------+----------------+ | Node/Master | 172.20.138.114 | +-------------+----------------+ | Node/Master | 172.20.138.111 | +-------------+----------------+ | Node/Master | 172.20.138.102 | +-------------+----------------+ Detected Services +-------------+----------------------+----------------------+ | SERVICE | LOCATION | DESCRIPTION | +-------------+----------------------+----------------------+ | Kubelet API | 172.20.138.194:10250 | The Kubelet is the | | | | main component in | | | | every Node, all pod | | | | operations goes | | | | through the kubelet | +-------------+----------------------+----------------------+ | Kubelet API | 172.20.138.180:10250 | The Kubelet is the | | | | main component in | | | | every Node, all pod | | | | operations goes | | | | through the kubelet | +-------------+----------------------+----------------------+ | Kubelet API | 172.20.138.170:10250 | The Kubelet is the | | | | main component in | | | | every Node, all pod | | | | operations goes | | | | through the kubelet | +-------------+----------------------+----------------------+ | Kubelet API | 172.20.138.162:10250 | The Kubelet is the | | | | main component in | | | | every Node, all pod | | | | operations goes | | | | through the kubelet | +-------------+----------------------+----------------------+ | Kubelet API | 172.20.138.154:10250 | The Kubelet is the | | | | main component in | | | | every Node, all pod | | | | operations goes | | | | through the kubelet | +-------------+----------------------+----------------------+ | Kubelet API | 172.20.138.136:10250 | The Kubelet is the | | | | main component in | | | | every Node, all pod | | | | operations goes | | | | through the kubelet | +-------------+----------------------+----------------------+ | Kubelet API | 172.20.138.128:10250 | The Kubelet is the | | | | main component in | | | | every Node, all pod | | | | operations goes | | | | through the kubelet | +-------------+----------------------+----------------------+ | Kubelet API | 172.20.138.122:10250 | The Kubelet is the | | | | main component in | | | | every Node, all pod | | | | operations goes | | | | through the kubelet | +-------------+----------------------+----------------------+ | Kubelet API | 172.20.138.114:10250 | The Kubelet is the | | | | main component in | | | | every Node, all pod | | | | operations goes | | | | through the kubelet | +-------------+----------------------+----------------------+ | Kubelet API | 172.20.138.111:10250 | The Kubelet is the | | | | main component in | | | | every Node, all pod | | | | operations goes | | | | through the kubelet | +-------------+----------------------+----------------------+ | Kubelet API | 172.20.138.102:10250 | The Kubelet is the | | | | main component in | | | | every Node, all pod | | | | operations goes | | | | through the kubelet | +-------------+----------------------+----------------------+ | Etcd | 172.20.138.170:2379 | Etcd is a DB that | | | | stores cluster's | | | | data, it contains | | | | configuration and | | | | current | | | | state | | | | information, and | | | | might contain | | | | secrets | +-------------+----------------------+----------------------+ | API Server | 172.20.138.170:6443 | The API server is in | | | | charge of all | | | | operations on the | | | | cluster. | +-------------+----------------------+----------------------+ Vulnerabilities For further information about a vulnerability, search its ID in: https://avd.aquasec.com/ +--------+---------------------+----------------------+----------------------+----------------------+----------+ | ID | LOCATION | MITRE CATEGORY | VULNERABILITY | DESCRIPTION | EVIDENCE | +--------+---------------------+----------------------+----------------------+----------------------+----------+ | KHV002 | 172.20.138.170:6443 | Initial Access // | K8s Version | The kubernetes | v1.27.5 | | | | Exposed sensitive | Disclosure | version could be | | | | | interfaces | | obtained from the | | | | | | | /version endpoint | | +--------+---------------------+----------------------+----------------------+----------------------+----------+