2021-11-22 03:09:49,895 INFO kube_hunter.modules.report.collector Started hunting 2021-11-22 03:09:49,895 INFO kube_hunter.modules.report.collector Discovering Open Kubernetes Services 2021-11-22 03:09:50,141 INFO kube_hunter.modules.report.collector Found open service "Kubelet API" at 10.4.5.182:10250 2021-11-22 03:09:50,148 INFO kube_hunter.modules.report.collector Found open service "Kubelet API" at 10.4.5.218:10250 2021-11-22 03:09:50,278 INFO kube_hunter.modules.report.collector Found open service "Kubelet API" at 10.4.5.141:10250 2021-11-22 03:09:50,296 INFO kube_hunter.modules.report.collector Found open service "Kubelet API" at 10.4.5.212:10250 2021-11-22 03:09:50,314 INFO kube_hunter.modules.report.collector Found open service "Kubelet API" at 10.4.5.194:10250 2021-11-22 03:09:50,382 INFO kube_hunter.modules.report.collector Found open service "Kubelet API" at 10.4.5.146:10250 2021-11-22 03:09:50,391 INFO kube_hunter.modules.report.collector Found open service "Kubelet API" at 10.4.5.113:10250 2021-11-22 03:09:50,511 INFO kube_hunter.modules.report.collector Found open service "Kubelet API" at 10.4.5.201:10250 2021-11-22 03:09:50,580 INFO kube_hunter.modules.report.collector Found open service "Kubelet API" at 10.4.5.122:10250 2021-11-22 03:09:50,564 INFO kube_hunter.modules.report.collector Found open service "Kubelet API" at 10.4.5.53:10250 2021-11-22 03:09:50,602 INFO kube_hunter.modules.report.collector Found open service "Kubelet API" at 10.4.5.238:10250 2021-11-22 03:09:50,644 INFO kube_hunter.modules.report.collector Found open service "Kubelet API" at 10.4.5.243:10250 2021-11-22 03:09:50,729 INFO kube_hunter.modules.report.collector Found open service "Kubelet API" at 10.4.5.62:10250 2021-11-22 03:09:50,747 INFO kube_hunter.modules.report.collector Found open service "Kubelet API" at 10.4.5.151:10250 2021-11-22 03:09:50,913 INFO kube_hunter.modules.report.collector Found open service "Kubelet API" at 10.4.5.88:10250 2021-11-22 03:09:51,094 INFO kube_hunter.modules.report.collector Found open service "API Server" at 10.4.5.88:6443 2021-11-22 03:09:51,207 INFO kube_hunter.modules.report.collector Found open service "API Server" at 10.4.5.53:6443 2021-11-22 03:09:51,224 INFO kube_hunter.modules.report.collector Found open service "API Server" at 10.4.5.62:6443 2021-11-22 03:09:51,228 INFO kube_hunter.modules.report.collector Found vulnerability "K8s Version Disclosure" in 10.4.5.88:6443 2021-11-22 03:09:51,316 INFO kube_hunter.modules.report.collector Found vulnerability "K8s Version Disclosure" in 10.4.5.53:6443 2021-11-22 03:09:51,320 INFO kube_hunter.modules.report.collector Found vulnerability "K8s Version Disclosure" in 10.4.5.62:6443 Nodes +-------------+------------+ | TYPE | LOCATION | +-------------+------------+ | Node/Master | 10.4.5.88 | +-------------+------------+ | Node/Master | 10.4.5.62 | +-------------+------------+ | Node/Master | 10.4.5.53 | +-------------+------------+ | Node/Master | 10.4.5.243 | +-------------+------------+ | Node/Master | 10.4.5.238 | +-------------+------------+ | Node/Master | 10.4.5.218 | +-------------+------------+ | Node/Master | 10.4.5.212 | +-------------+------------+ | Node/Master | 10.4.5.201 | +-------------+------------+ | Node/Master | 10.4.5.194 | +-------------+------------+ | Node/Master | 10.4.5.182 | +-------------+------------+ | Node/Master | 10.4.5.151 | +-------------+------------+ | Node/Master | 10.4.5.146 | +-------------+------------+ | Node/Master | 10.4.5.141 | +-------------+------------+ | Node/Master | 10.4.5.122 | +-------------+------------+ | Node/Master | 10.4.5.113 | +-------------+------------+ Detected Services +-------------+------------------+----------------------+ | SERVICE | LOCATION | DESCRIPTION | +-------------+------------------+----------------------+ | Kubelet API | 10.4.5.88:10250 | The Kubelet is the | | | | main component in | | | | every Node, all pod | | | | operations goes | | | | through the kubelet | +-------------+------------------+----------------------+ | Kubelet API | 10.4.5.62:10250 | The Kubelet is the | | | | main component in | | | | every Node, all pod | | | | operations goes | | | | through the kubelet | +-------------+------------------+----------------------+ | Kubelet API | 10.4.5.53:10250 | The Kubelet is the | | | | main component in | | | | every Node, all pod | | | | operations goes | | | | through the kubelet | +-------------+------------------+----------------------+ | Kubelet API | 10.4.5.243:10250 | The Kubelet is the | | | | main component in | | | | every Node, all pod | | | | operations goes | | | | through the kubelet | +-------------+------------------+----------------------+ | Kubelet API | 10.4.5.238:10250 | The Kubelet is the | | | | main component in | | | | every Node, all pod | | | | operations goes | | | | through the kubelet | +-------------+------------------+----------------------+ | Kubelet API | 10.4.5.218:10250 | The Kubelet is the | | | | main component in | | | | every Node, all pod | | | | operations goes | | | | through the kubelet | +-------------+------------------+----------------------+ | Kubelet API | 10.4.5.212:10250 | The Kubelet is the | | | | main component in | | | | every Node, all pod | | | | operations goes | | | | through the kubelet | +-------------+------------------+----------------------+ | Kubelet API | 10.4.5.201:10250 | The Kubelet is the | | | | main component in | | | | every Node, all pod | | | | operations goes | | | | through the kubelet | +-------------+------------------+----------------------+ | Kubelet API | 10.4.5.194:10250 | The Kubelet is the | | | | main component in | | | | every Node, all pod | | | | operations goes | | | | through the kubelet | +-------------+------------------+----------------------+ | Kubelet API | 10.4.5.182:10250 | The Kubelet is the | | | | main component in | | | | every Node, all pod | | | | operations goes | | | | through the kubelet | +-------------+------------------+----------------------+ | Kubelet API | 10.4.5.151:10250 | The Kubelet is the | | | | main component in | | | | every Node, all pod | | | | operations goes | | | | through the kubelet | +-------------+------------------+----------------------+ | Kubelet API | 10.4.5.146:10250 | The Kubelet is the | | | | main component in | | | | every Node, all pod | | | | operations goes | | | | through the kubelet | +-------------+------------------+----------------------+ | Kubelet API | 10.4.5.141:10250 | The Kubelet is the | | | | main component in | | | | every Node, all pod | | | | operations goes | | | | through the kubelet | +-------------+------------------+----------------------+ | Kubelet API | 10.4.5.122:10250 | The Kubelet is the | | | | main component in | | | | every Node, all pod | | | | operations goes | | | | through the kubelet | +-------------+------------------+----------------------+ | Kubelet API | 10.4.5.113:10250 | The Kubelet is the | | | | main component in | | | | every Node, all pod | | | | operations goes | | | | through the kubelet | +-------------+------------------+----------------------+ | API Server | 10.4.5.88:6443 | The API server is in | | | | charge of all | | | | operations on the | | | | cluster. | +-------------+------------------+----------------------+ | API Server | 10.4.5.62:6443 | The API server is in | | | | charge of all | | | | operations on the | | | | cluster. | +-------------+------------------+----------------------+ | API Server | 10.4.5.53:6443 | The API server is in | | | | charge of all | | | | operations on the | | | | cluster. | +-------------+------------------+----------------------+ Vulnerabilities For further information about a vulnerability, search its ID in: https://avd.aquasec.com/ +--------+----------------+----------------------+----------------------+----------------------+----------+ | ID | LOCATION | MITRE CATEGORY | VULNERABILITY | DESCRIPTION | EVIDENCE | +--------+----------------+----------------------+----------------------+----------------------+----------+ | KHV002 | 10.4.5.88:6443 | Initial Access // | K8s Version | The kubernetes | v1.19.9 | | | | Exposed sensitive | Disclosure | version could be | | | | | interfaces | | obtained from the | | | | | | | /version endpoint | | +--------+----------------+----------------------+----------------------+----------------------+----------+ | KHV002 | 10.4.5.62:6443 | Initial Access // | K8s Version | The kubernetes | v1.19.9 | | | | Exposed sensitive | Disclosure | version could be | | | | | interfaces | | obtained from the | | | | | | | /version endpoint | | +--------+----------------+----------------------+----------------------+----------------------+----------+ | KHV002 | 10.4.5.53:6443 | Initial Access // | K8s Version | The kubernetes | v1.19.9 | | | | Exposed sensitive | Disclosure | version could be | | | | | interfaces | | obtained from the | | | | | | | /version endpoint | | +--------+----------------+----------------------+----------------------+----------------------+----------+