2021-10-30 06:02:26,447 INFO kube_hunter.modules.report.collector Started hunting 2021-10-30 06:02:26,448 INFO kube_hunter.modules.report.collector Discovering Open Kubernetes Services 2021-10-30 06:02:26,750 INFO kube_hunter.modules.report.collector Found open service "Kubelet API" at 10.4.5.62:10250 2021-10-30 06:02:26,880 INFO kube_hunter.modules.report.collector Found open service "Kubelet API" at 10.4.5.168:10250 2021-10-30 06:02:26,895 INFO kube_hunter.modules.report.collector Found open service "Kubelet API" at 10.4.5.14:10250 2021-10-30 06:02:26,995 INFO kube_hunter.modules.report.collector Found open service "Kubelet API" at 10.4.5.9:10250 2021-10-30 06:02:27,003 INFO kube_hunter.modules.report.collector Found open service "Kubelet API" at 10.4.5.202:10250 2021-10-30 06:02:27,008 INFO kube_hunter.modules.report.collector Found open service "Kubelet API" at 10.4.5.205:10250 2021-10-30 06:02:27,008 INFO kube_hunter.modules.report.collector Found open service "Kubelet API" at 10.4.5.128:10250 2021-10-30 06:02:27,090 INFO kube_hunter.modules.report.collector Found open service "Kubelet API" at 10.4.5.177:10250 2021-10-30 06:02:27,129 INFO kube_hunter.modules.report.collector Found open service "Kubelet API" at 10.4.5.149:10250 2021-10-30 06:02:27,137 INFO kube_hunter.modules.report.collector Found open service "Kubelet API" at 10.4.5.100:10250 2021-10-30 06:02:27,309 INFO kube_hunter.modules.report.collector Found open service "Kubelet API" at 10.4.5.41:10250 2021-10-30 06:02:27,314 INFO kube_hunter.modules.report.collector Found open service "API Server" at 10.4.5.9:6443 2021-10-30 06:02:27,329 INFO kube_hunter.modules.report.collector Found open service "Kubelet API" at 10.4.5.135:10250 2021-10-30 06:02:27,360 INFO kube_hunter.modules.report.collector Found open service "Kubelet API" at 10.4.5.198:10250 2021-10-30 06:02:27,373 INFO kube_hunter.modules.report.collector Found open service "API Server" at 10.4.5.128:6443 2021-10-30 06:02:27,423 INFO kube_hunter.modules.report.collector Found open service "Kubelet API" at 10.4.5.133:10250 2021-10-30 06:02:27,538 INFO kube_hunter.modules.report.collector Found open service "Kubelet API" at 10.4.5.172:10250 2021-10-30 06:02:27,666 INFO kube_hunter.modules.report.collector Found vulnerability "K8s Version Disclosure" in 10.4.5.128:6443 2021-10-30 06:02:27,667 INFO kube_hunter.modules.report.collector Found open service "API Server" at 10.4.5.133:6443 2021-10-30 06:02:27,864 INFO kube_hunter.modules.report.collector Found vulnerability "K8s Version Disclosure" in 10.4.5.9:6443 2021-10-30 06:02:28,008 INFO kube_hunter.modules.report.collector Found vulnerability "K8s Version Disclosure" in 10.4.5.133:6443 Nodes +-------------+------------+ | TYPE | LOCATION | +-------------+------------+ | Node/Master | 10.4.5.9 | +-------------+------------+ | Node/Master | 10.4.5.62 | +-------------+------------+ | Node/Master | 10.4.5.41 | +-------------+------------+ | Node/Master | 10.4.5.205 | +-------------+------------+ | Node/Master | 10.4.5.202 | +-------------+------------+ | Node/Master | 10.4.5.198 | +-------------+------------+ | Node/Master | 10.4.5.177 | +-------------+------------+ | Node/Master | 10.4.5.172 | +-------------+------------+ | Node/Master | 10.4.5.168 | +-------------+------------+ | Node/Master | 10.4.5.149 | +-------------+------------+ | Node/Master | 10.4.5.14 | +-------------+------------+ | Node/Master | 10.4.5.135 | +-------------+------------+ | Node/Master | 10.4.5.133 | +-------------+------------+ | Node/Master | 10.4.5.128 | +-------------+------------+ | Node/Master | 10.4.5.100 | +-------------+------------+ Detected Services +-------------+------------------+----------------------+ | SERVICE | LOCATION | DESCRIPTION | +-------------+------------------+----------------------+ | Kubelet API | 10.4.5.9:10250 | The Kubelet is the | | | | main component in | | | | every Node, all pod | | | | operations goes | | | | through the kubelet | +-------------+------------------+----------------------+ | Kubelet API | 10.4.5.62:10250 | The Kubelet is the | | | | main component in | | | | every Node, all pod | | | | operations goes | | | | through the kubelet | +-------------+------------------+----------------------+ | Kubelet API | 10.4.5.41:10250 | The Kubelet is the | | | | main component in | | | | every Node, all pod | | | | operations goes | | | | through the kubelet | +-------------+------------------+----------------------+ | Kubelet API | 10.4.5.205:10250 | The Kubelet is the | | | | main component in | | | | every Node, all pod | | | | operations goes | | | | through the kubelet | +-------------+------------------+----------------------+ | Kubelet API | 10.4.5.202:10250 | The Kubelet is the | | | | main component in | | | | every Node, all pod | | | | operations goes | | | | through the kubelet | +-------------+------------------+----------------------+ | Kubelet API | 10.4.5.198:10250 | The Kubelet is the | | | | main component in | | | | every Node, all pod | | | | operations goes | | | | through the kubelet | +-------------+------------------+----------------------+ | Kubelet API | 10.4.5.177:10250 | The Kubelet is the | | | | main component in | | | | every Node, all pod | | | | operations goes | | | | through the kubelet | +-------------+------------------+----------------------+ | Kubelet API | 10.4.5.172:10250 | The Kubelet is the | | | | main component in | | | | every Node, all pod | | | | operations goes | | | | through the kubelet | +-------------+------------------+----------------------+ | Kubelet API | 10.4.5.168:10250 | The Kubelet is the | | | | main component in | | | | every Node, all pod | | | | operations goes | | | | through the kubelet | +-------------+------------------+----------------------+ | Kubelet API | 10.4.5.14:10250 | The Kubelet is the | | | | main component in | | | | every Node, all pod | | | | operations goes | | | | through the kubelet | +-------------+------------------+----------------------+ | Kubelet API | 10.4.5.149:10250 | The Kubelet is the | | | | main component in | | | | every Node, all pod | | | | operations goes | | | | through the kubelet | +-------------+------------------+----------------------+ | Kubelet API | 10.4.5.135:10250 | The Kubelet is the | | | | main component in | | | | every Node, all pod | | | | operations goes | | | | through the kubelet | +-------------+------------------+----------------------+ | Kubelet API | 10.4.5.133:10250 | The Kubelet is the | | | | main component in | | | | every Node, all pod | | | | operations goes | | | | through the kubelet | +-------------+------------------+----------------------+ | Kubelet API | 10.4.5.128:10250 | The Kubelet is the | | | | main component in | | | | every Node, all pod | | | | operations goes | | | | through the kubelet | +-------------+------------------+----------------------+ | Kubelet API | 10.4.5.100:10250 | The Kubelet is the | | | | main component in | | | | every Node, all pod | | | | operations goes | | | | through the kubelet | +-------------+------------------+----------------------+ | API Server | 10.4.5.9:6443 | The API server is in | | | | charge of all | | | | operations on the | | | | cluster. | +-------------+------------------+----------------------+ | API Server | 10.4.5.133:6443 | The API server is in | | | | charge of all | | | | operations on the | | | | cluster. | +-------------+------------------+----------------------+ | API Server | 10.4.5.128:6443 | The API server is in | | | | charge of all | | | | operations on the | | | | cluster. | +-------------+------------------+----------------------+ Vulnerabilities For further information about a vulnerability, search its ID in: https://avd.aquasec.com/ +--------+-----------------+----------------------+----------------------+----------------------+----------+ | ID | LOCATION | MITRE CATEGORY | VULNERABILITY | DESCRIPTION | EVIDENCE | +--------+-----------------+----------------------+----------------------+----------------------+----------+ | KHV002 | 10.4.5.9:6443 | Initial Access // | K8s Version | The kubernetes | v1.19.9 | | | | Exposed sensitive | Disclosure | version could be | | | | | interfaces | | obtained from the | | | | | | | /version endpoint | | +--------+-----------------+----------------------+----------------------+----------------------+----------+ | KHV002 | 10.4.5.133:6443 | Initial Access // | K8s Version | The kubernetes | v1.19.9 | | | | Exposed sensitive | Disclosure | version could be | | | | | interfaces | | obtained from the | | | | | | | /version endpoint | | +--------+-----------------+----------------------+----------------------+----------------------+----------+ | KHV002 | 10.4.5.128:6443 | Initial Access // | K8s Version | The kubernetes | v1.19.9 | | | | Exposed sensitive | Disclosure | version could be | | | | | interfaces | | obtained from the | | | | | | | /version endpoint | | +--------+-----------------+----------------------+----------------------+----------------------+----------+