2022-01-11 07:09:14,316 INFO kube_hunter.modules.report.collector Started hunting 2022-01-11 07:09:14,316 INFO kube_hunter.modules.report.collector Discovering Open Kubernetes Services 2022-01-11 07:09:14,690 INFO kube_hunter.modules.report.collector Found open service "Kubelet API" at 10.4.5.27:10250 2022-01-11 07:09:14,700 INFO kube_hunter.modules.report.collector Found open service "Kubelet API" at 10.4.5.235:10250 2022-01-11 07:09:14,777 INFO kube_hunter.modules.report.collector Found open service "Kubelet API" at 10.4.5.25:10250 2022-01-11 07:09:14,790 INFO kube_hunter.modules.report.collector Found open service "Kubelet API" at 10.4.5.183:10250 2022-01-11 07:09:14,792 INFO kube_hunter.modules.report.collector Found open service "Kubelet API" at 10.4.5.99:10250 2022-01-11 07:09:14,830 INFO kube_hunter.modules.report.collector Found open service "Kubelet API" at 10.4.5.139:10250 2022-01-11 07:09:14,868 INFO kube_hunter.modules.report.collector Found open service "Kubelet API" at 10.4.5.85:10250 2022-01-11 07:09:14,908 INFO kube_hunter.modules.report.collector Found open service "Kubelet API" at 10.4.5.211:10250 2022-01-11 07:09:14,928 INFO kube_hunter.modules.report.collector Found open service "Kubelet API" at 10.4.5.16:10250 2022-01-11 07:09:14,933 INFO kube_hunter.modules.report.collector Found open service "Kubelet API" at 10.4.5.55:10250 2022-01-11 07:09:14,964 INFO kube_hunter.modules.report.collector Found open service "Kubelet API" at 10.4.5.90:10250 2022-01-11 07:09:15,053 INFO kube_hunter.modules.report.collector Found open service "Kubelet API" at 10.4.5.254:10250 2022-01-11 07:09:15,074 INFO kube_hunter.modules.report.collector Found open service "Kubelet API" at 10.4.5.100:10250 2022-01-11 07:09:15,099 INFO kube_hunter.modules.report.collector Found open service "Kubelet API" at 10.4.5.233:10250 2022-01-11 07:09:15,170 INFO kube_hunter.modules.report.collector Found open service "Kubelet API" at 10.4.5.121:10250 2022-01-11 07:09:15,311 INFO kube_hunter.modules.report.collector Found open service "API Server" at 10.4.5.100:6443 2022-01-11 07:09:15,456 INFO kube_hunter.modules.report.collector Found open service "API Server" at 10.4.5.121:6443 2022-01-11 07:09:15,485 INFO kube_hunter.modules.report.collector Found open service "API Server" at 10.4.5.183:6443 2022-01-11 07:09:15,629 INFO kube_hunter.modules.report.collector Found vulnerability "K8s Version Disclosure" in 10.4.5.100:6443 2022-01-11 07:09:15,659 INFO kube_hunter.modules.report.collector Found vulnerability "K8s Version Disclosure" in 10.4.5.121:6443 2022-01-11 07:09:15,710 INFO kube_hunter.modules.report.collector Found vulnerability "K8s Version Disclosure" in 10.4.5.183:6443 Nodes +-------------+------------+ | TYPE | LOCATION | +-------------+------------+ | Node/Master | 10.4.5.99 | +-------------+------------+ | Node/Master | 10.4.5.90 | +-------------+------------+ | Node/Master | 10.4.5.85 | +-------------+------------+ | Node/Master | 10.4.5.55 | +-------------+------------+ | Node/Master | 10.4.5.27 | +-------------+------------+ | Node/Master | 10.4.5.254 | +-------------+------------+ | Node/Master | 10.4.5.25 | +-------------+------------+ | Node/Master | 10.4.5.235 | +-------------+------------+ | Node/Master | 10.4.5.233 | +-------------+------------+ | Node/Master | 10.4.5.211 | +-------------+------------+ | Node/Master | 10.4.5.183 | +-------------+------------+ | Node/Master | 10.4.5.16 | +-------------+------------+ | Node/Master | 10.4.5.139 | +-------------+------------+ | Node/Master | 10.4.5.121 | +-------------+------------+ | Node/Master | 10.4.5.100 | +-------------+------------+ Detected Services +-------------+------------------+----------------------+ | SERVICE | LOCATION | DESCRIPTION | +-------------+------------------+----------------------+ | Kubelet API | 10.4.5.99:10250 | The Kubelet is the | | | | main component in | | | | every Node, all pod | | | | operations goes | | | | through the kubelet | +-------------+------------------+----------------------+ | Kubelet API | 10.4.5.90:10250 | The Kubelet is the | | | | main component in | | | | every Node, all pod | | | | operations goes | | | | through the kubelet | +-------------+------------------+----------------------+ | Kubelet API | 10.4.5.85:10250 | The Kubelet is the | | | | main component in | | | | every Node, all pod | | | | operations goes | | | | through the kubelet | +-------------+------------------+----------------------+ | Kubelet API | 10.4.5.55:10250 | The Kubelet is the | | | | main component in | | | | every Node, all pod | | | | operations goes | | | | through the kubelet | +-------------+------------------+----------------------+ | Kubelet API | 10.4.5.27:10250 | The Kubelet is the | | | | main component in | | | | every Node, all pod | | | | operations goes | | | | through the kubelet | +-------------+------------------+----------------------+ | Kubelet API | 10.4.5.25:10250 | The Kubelet is the | | | | main component in | | | | every Node, all pod | | | | operations goes | | | | through the kubelet | +-------------+------------------+----------------------+ | Kubelet API | 10.4.5.254:10250 | The Kubelet is the | | | | main component in | | | | every Node, all pod | | | | operations goes | | | | through the kubelet | +-------------+------------------+----------------------+ | Kubelet API | 10.4.5.235:10250 | The Kubelet is the | | | | main component in | | | | every Node, all pod | | | | operations goes | | | | through the kubelet | +-------------+------------------+----------------------+ | Kubelet API | 10.4.5.233:10250 | The Kubelet is the | | | | main component in | | | | every Node, all pod | | | | operations goes | | | | through the kubelet | +-------------+------------------+----------------------+ | Kubelet API | 10.4.5.211:10250 | The Kubelet is the | | | | main component in | | | | every Node, all pod | | | | operations goes | | | | through the kubelet | +-------------+------------------+----------------------+ | Kubelet API | 10.4.5.183:10250 | The Kubelet is the | | | | main component in | | | | every Node, all pod | | | | operations goes | | | | through the kubelet | +-------------+------------------+----------------------+ | Kubelet API | 10.4.5.16:10250 | The Kubelet is the | | | | main component in | | | | every Node, all pod | | | | operations goes | | | | through the kubelet | +-------------+------------------+----------------------+ | Kubelet API | 10.4.5.139:10250 | The Kubelet is the | | | | main component in | | | | every Node, all pod | | | | operations goes | | | | through the kubelet | +-------------+------------------+----------------------+ | Kubelet API | 10.4.5.121:10250 | The Kubelet is the | | | | main component in | | | | every Node, all pod | | | | operations goes | | | | through the kubelet | +-------------+------------------+----------------------+ | Kubelet API | 10.4.5.100:10250 | The Kubelet is the | | | | main component in | | | | every Node, all pod | | | | operations goes | | | | through the kubelet | +-------------+------------------+----------------------+ | API Server | 10.4.5.183:6443 | The API server is in | | | | charge of all | | | | operations on the | | | | cluster. | +-------------+------------------+----------------------+ | API Server | 10.4.5.121:6443 | The API server is in | | | | charge of all | | | | operations on the | | | | cluster. | +-------------+------------------+----------------------+ | API Server | 10.4.5.100:6443 | The API server is in | | | | charge of all | | | | operations on the | | | | cluster. | +-------------+------------------+----------------------+ Vulnerabilities For further information about a vulnerability, search its ID in: https://avd.aquasec.com/ +--------+-----------------+----------------------+----------------------+----------------------+----------+ | ID | LOCATION | MITRE CATEGORY | VULNERABILITY | DESCRIPTION | EVIDENCE | +--------+-----------------+----------------------+----------------------+----------------------+----------+ | KHV002 | 10.4.5.183:6443 | Initial Access // | K8s Version | The kubernetes | v1.19.9 | | | | Exposed sensitive | Disclosure | version could be | | | | | interfaces | | obtained from the | | | | | | | /version endpoint | | +--------+-----------------+----------------------+----------------------+----------------------+----------+ | KHV002 | 10.4.5.121:6443 | Initial Access // | K8s Version | The kubernetes | v1.19.9 | | | | Exposed sensitive | Disclosure | version could be | | | | | interfaces | | obtained from the | | | | | | | /version endpoint | | +--------+-----------------+----------------------+----------------------+----------------------+----------+ | KHV002 | 10.4.5.100:6443 | Initial Access // | K8s Version | The kubernetes | v1.19.9 | | | | Exposed sensitive | Disclosure | version could be | | | | | interfaces | | obtained from the | | | | | | | /version endpoint | | +--------+-----------------+----------------------+----------------------+----------------------+----------+