2021-12-11 05:24:43,902 INFO kube_hunter.modules.report.collector Started hunting 2021-12-11 05:24:43,902 INFO kube_hunter.modules.report.collector Discovering Open Kubernetes Services 2021-12-11 05:24:44,173 INFO kube_hunter.modules.report.collector Found open service "Kubelet API" at 10.4.5.72:10250 2021-12-11 05:24:44,181 INFO kube_hunter.modules.report.collector Found open service "Kubelet API" at 10.4.5.120:10250 2021-12-11 05:24:44,187 INFO kube_hunter.modules.report.collector Found open service "Kubelet API" at 10.4.5.77:10250 2021-12-11 05:24:44,226 INFO kube_hunter.modules.report.collector Found open service "Kubelet API" at 10.4.5.236:10250 2021-12-11 05:24:44,355 INFO kube_hunter.modules.report.collector Found open service "Kubelet API" at 10.4.5.148:10250 2021-12-11 05:24:44,437 INFO kube_hunter.modules.report.collector Found open service "Kubelet API" at 10.4.5.13:10250 2021-12-11 05:24:44,440 INFO kube_hunter.modules.report.collector Found open service "Kubelet API" at 10.4.5.200:10250 2021-12-11 05:24:44,445 INFO kube_hunter.modules.report.collector Found open service "Kubelet API" at 10.4.5.9:10250 2021-12-11 05:24:44,474 INFO kube_hunter.modules.report.collector Found open service "Kubelet API" at 10.4.5.163:10250 2021-12-11 05:24:44,556 INFO kube_hunter.modules.report.collector Found open service "Kubelet API" at 10.4.5.224:10250 2021-12-11 05:24:44,577 INFO kube_hunter.modules.report.collector Found open service "Kubelet API" at 10.4.5.43:10250 2021-12-11 05:24:44,584 INFO kube_hunter.modules.report.collector Found open service "Kubelet API" at 10.4.5.174:10250 2021-12-11 05:24:44,693 INFO kube_hunter.modules.report.collector Found open service "Kubelet API" at 10.4.5.68:10250 2021-12-11 05:24:44,766 INFO kube_hunter.modules.report.collector Found open service "Kubelet API" at 10.4.5.56:10250 2021-12-11 05:24:44,911 INFO kube_hunter.modules.report.collector Found open service "API Server" at 10.4.5.56:6443 2021-12-11 05:24:45,019 INFO kube_hunter.modules.report.collector Found open service "Kubelet API" at 10.4.5.184:10250 2021-12-11 05:24:45,073 INFO kube_hunter.modules.report.collector Found open service "API Server" at 10.4.5.184:6443 2021-12-11 05:24:45,239 INFO kube_hunter.modules.report.collector Found vulnerability "K8s Version Disclosure" in 10.4.5.56:6443 2021-12-11 05:24:45,261 INFO kube_hunter.modules.report.collector Found open service "API Server" at 10.4.5.200:6443 2021-12-11 05:24:45,305 INFO kube_hunter.modules.report.collector Found vulnerability "K8s Version Disclosure" in 10.4.5.184:6443 2021-12-11 05:24:45,358 INFO kube_hunter.modules.report.collector Found vulnerability "K8s Version Disclosure" in 10.4.5.200:6443 Nodes +-------------+------------+ | TYPE | LOCATION | +-------------+------------+ | Node/Master | 10.4.5.9 | +-------------+------------+ | Node/Master | 10.4.5.77 | +-------------+------------+ | Node/Master | 10.4.5.72 | +-------------+------------+ | Node/Master | 10.4.5.68 | +-------------+------------+ | Node/Master | 10.4.5.56 | +-------------+------------+ | Node/Master | 10.4.5.43 | +-------------+------------+ | Node/Master | 10.4.5.236 | +-------------+------------+ | Node/Master | 10.4.5.224 | +-------------+------------+ | Node/Master | 10.4.5.200 | +-------------+------------+ | Node/Master | 10.4.5.184 | +-------------+------------+ | Node/Master | 10.4.5.174 | +-------------+------------+ | Node/Master | 10.4.5.163 | +-------------+------------+ | Node/Master | 10.4.5.148 | +-------------+------------+ | Node/Master | 10.4.5.13 | +-------------+------------+ | Node/Master | 10.4.5.120 | +-------------+------------+ Detected Services +-------------+------------------+----------------------+ | SERVICE | LOCATION | DESCRIPTION | +-------------+------------------+----------------------+ | Kubelet API | 10.4.5.9:10250 | The Kubelet is the | | | | main component in | | | | every Node, all pod | | | | operations goes | | | | through the kubelet | +-------------+------------------+----------------------+ | Kubelet API | 10.4.5.77:10250 | The Kubelet is the | | | | main component in | | | | every Node, all pod | | | | operations goes | | | | through the kubelet | +-------------+------------------+----------------------+ | Kubelet API | 10.4.5.72:10250 | The Kubelet is the | | | | main component in | | | | every Node, all pod | | | | operations goes | | | | through the kubelet | +-------------+------------------+----------------------+ | Kubelet API | 10.4.5.68:10250 | The Kubelet is the | | | | main component in | | | | every Node, all pod | | | | operations goes | | | | through the kubelet | +-------------+------------------+----------------------+ | Kubelet API | 10.4.5.56:10250 | The Kubelet is the | | | | main component in | | | | every Node, all pod | | | | operations goes | | | | through the kubelet | +-------------+------------------+----------------------+ | Kubelet API | 10.4.5.43:10250 | The Kubelet is the | | | | main component in | | | | every Node, all pod | | | | operations goes | | | | through the kubelet | +-------------+------------------+----------------------+ | Kubelet API | 10.4.5.236:10250 | The Kubelet is the | | | | main component in | | | | every Node, all pod | | | | operations goes | | | | through the kubelet | +-------------+------------------+----------------------+ | Kubelet API | 10.4.5.224:10250 | The Kubelet is the | | | | main component in | | | | every Node, all pod | | | | operations goes | | | | through the kubelet | +-------------+------------------+----------------------+ | Kubelet API | 10.4.5.200:10250 | The Kubelet is the | | | | main component in | | | | every Node, all pod | | | | operations goes | | | | through the kubelet | +-------------+------------------+----------------------+ | Kubelet API | 10.4.5.184:10250 | The Kubelet is the | | | | main component in | | | | every Node, all pod | | | | operations goes | | | | through the kubelet | +-------------+------------------+----------------------+ | Kubelet API | 10.4.5.174:10250 | The Kubelet is the | | | | main component in | | | | every Node, all pod | | | | operations goes | | | | through the kubelet | +-------------+------------------+----------------------+ | Kubelet API | 10.4.5.163:10250 | The Kubelet is the | | | | main component in | | | | every Node, all pod | | | | operations goes | | | | through the kubelet | +-------------+------------------+----------------------+ | Kubelet API | 10.4.5.148:10250 | The Kubelet is the | | | | main component in | | | | every Node, all pod | | | | operations goes | | | | through the kubelet | +-------------+------------------+----------------------+ | Kubelet API | 10.4.5.13:10250 | The Kubelet is the | | | | main component in | | | | every Node, all pod | | | | operations goes | | | | through the kubelet | +-------------+------------------+----------------------+ | Kubelet API | 10.4.5.120:10250 | The Kubelet is the | | | | main component in | | | | every Node, all pod | | | | operations goes | | | | through the kubelet | +-------------+------------------+----------------------+ | API Server | 10.4.5.56:6443 | The API server is in | | | | charge of all | | | | operations on the | | | | cluster. | +-------------+------------------+----------------------+ | API Server | 10.4.5.200:6443 | The API server is in | | | | charge of all | | | | operations on the | | | | cluster. | +-------------+------------------+----------------------+ | API Server | 10.4.5.184:6443 | The API server is in | | | | charge of all | | | | operations on the | | | | cluster. | +-------------+------------------+----------------------+ Vulnerabilities For further information about a vulnerability, search its ID in: https://avd.aquasec.com/ +--------+-----------------+----------------------+----------------------+----------------------+----------+ | ID | LOCATION | MITRE CATEGORY | VULNERABILITY | DESCRIPTION | EVIDENCE | +--------+-----------------+----------------------+----------------------+----------------------+----------+ | KHV002 | 10.4.5.56:6443 | Initial Access // | K8s Version | The kubernetes | v1.19.9 | | | | Exposed sensitive | Disclosure | version could be | | | | | interfaces | | obtained from the | | | | | | | /version endpoint | | +--------+-----------------+----------------------+----------------------+----------------------+----------+ | KHV002 | 10.4.5.200:6443 | Initial Access // | K8s Version | The kubernetes | v1.19.9 | | | | Exposed sensitive | Disclosure | version could be | | | | | interfaces | | obtained from the | | | | | | | /version endpoint | | +--------+-----------------+----------------------+----------------------+----------------------+----------+ | KHV002 | 10.4.5.184:6443 | Initial Access // | K8s Version | The kubernetes | v1.19.9 | | | | Exposed sensitive | Disclosure | version could be | | | | | interfaces | | obtained from the | | | | | | | /version endpoint | | +--------+-----------------+----------------------+----------------------+----------------------+----------+