2022-02-04 16:39:56,834 INFO kube_hunter.modules.report.collector Started hunting 2022-02-04 16:39:56,834 INFO kube_hunter.modules.report.collector Discovering Open Kubernetes Services 2022-02-04 16:39:57,327 INFO kube_hunter.modules.report.collector Found open service "Kubelet API" at 10.4.5.104:10250 2022-02-04 16:39:57,342 INFO kube_hunter.modules.report.collector Found open service "Kubelet API" at 10.4.5.66:10250 2022-02-04 16:39:57,347 INFO kube_hunter.modules.report.collector Found open service "Kubelet API" at 10.4.5.180:10250 2022-02-04 16:39:57,357 INFO kube_hunter.modules.report.collector Found open service "Kubelet API" at 10.4.5.118:10250 2022-02-04 16:39:57,399 INFO kube_hunter.modules.report.collector Found open service "Kubelet API" at 10.4.5.209:10250 2022-02-04 16:39:57,407 INFO kube_hunter.modules.report.collector Found open service "Kubelet API" at 10.4.5.173:10250 2022-02-04 16:39:57,413 INFO kube_hunter.modules.report.collector Found open service "Kubelet API" at 10.4.5.18:10250 2022-02-04 16:39:57,434 INFO kube_hunter.modules.report.collector Found open service "Kubelet API" at 10.4.5.146:10250 2022-02-04 16:39:57,594 INFO kube_hunter.modules.report.collector Found open service "Kubelet API" at 10.4.5.251:10250 2022-02-04 16:39:57,614 INFO kube_hunter.modules.report.collector Found open service "Kubelet API" at 10.4.5.174:10250 2022-02-04 16:39:57,624 INFO kube_hunter.modules.report.collector Found open service "Kubelet API" at 10.4.5.121:10250 2022-02-04 16:39:57,665 INFO kube_hunter.modules.report.collector Found open service "Kubelet API" at 10.4.5.227:10250 2022-02-04 16:39:57,700 INFO kube_hunter.modules.report.collector Found open service "Kubelet API" at 10.4.5.100:10250 2022-02-04 16:39:57,778 INFO kube_hunter.modules.report.collector Found open service "Kubelet API" at 10.4.5.201:10250 2022-02-04 16:39:57,990 INFO kube_hunter.modules.report.collector Found open service "API Server" at 10.4.5.63:6443 2022-02-04 16:39:58,000 INFO kube_hunter.modules.report.collector Found open service "API Server" at 10.4.5.174:6443 2022-02-04 16:39:58,360 INFO kube_hunter.modules.report.collector Found open service "Kubelet API" at 10.4.5.63:10250 2022-02-04 16:39:58,367 INFO kube_hunter.modules.report.collector Found vulnerability "K8s Version Disclosure" in 10.4.5.174:6443 2022-02-04 16:39:58,540 INFO kube_hunter.modules.report.collector Found vulnerability "K8s Version Disclosure" in 10.4.5.63:6443 2022-02-04 16:39:58,891 INFO kube_hunter.modules.report.collector Found open service "API Server" at 10.4.5.66:6443 2022-02-04 16:39:59,032 INFO kube_hunter.modules.report.collector Found vulnerability "K8s Version Disclosure" in 10.4.5.66:6443 Nodes +-------------+------------+ | TYPE | LOCATION | +-------------+------------+ | Node/Master | 10.4.5.66 | +-------------+------------+ | Node/Master | 10.4.5.63 | +-------------+------------+ | Node/Master | 10.4.5.251 | +-------------+------------+ | Node/Master | 10.4.5.227 | +-------------+------------+ | Node/Master | 10.4.5.209 | +-------------+------------+ | Node/Master | 10.4.5.201 | +-------------+------------+ | Node/Master | 10.4.5.180 | +-------------+------------+ | Node/Master | 10.4.5.18 | +-------------+------------+ | Node/Master | 10.4.5.174 | +-------------+------------+ | Node/Master | 10.4.5.173 | +-------------+------------+ | Node/Master | 10.4.5.146 | +-------------+------------+ | Node/Master | 10.4.5.121 | +-------------+------------+ | Node/Master | 10.4.5.118 | +-------------+------------+ | Node/Master | 10.4.5.104 | +-------------+------------+ | Node/Master | 10.4.5.100 | +-------------+------------+ Detected Services +-------------+------------------+----------------------+ | SERVICE | LOCATION | DESCRIPTION | +-------------+------------------+----------------------+ | Kubelet API | 10.4.5.66:10250 | The Kubelet is the | | | | main component in | | | | every Node, all pod | | | | operations goes | | | | through the kubelet | +-------------+------------------+----------------------+ | Kubelet API | 10.4.5.63:10250 | The Kubelet is the | | | | main component in | | | | every Node, all pod | | | | operations goes | | | | through the kubelet | +-------------+------------------+----------------------+ | Kubelet API | 10.4.5.251:10250 | The Kubelet is the | | | | main component in | | | | every Node, all pod | | | | operations goes | | | | through the kubelet | +-------------+------------------+----------------------+ | Kubelet API | 10.4.5.227:10250 | The Kubelet is the | | | | main component in | | | | every Node, all pod | | | | operations goes | | | | through the kubelet | +-------------+------------------+----------------------+ | Kubelet API | 10.4.5.209:10250 | The Kubelet is the | | | | main component in | | | | every Node, all pod | | | | operations goes | | | | through the kubelet | +-------------+------------------+----------------------+ | Kubelet API | 10.4.5.201:10250 | The Kubelet is the | | | | main component in | | | | every Node, all pod | | | | operations goes | | | | through the kubelet | +-------------+------------------+----------------------+ | Kubelet API | 10.4.5.18:10250 | The Kubelet is the | | | | main component in | | | | every Node, all pod | | | | operations goes | | | | through the kubelet | +-------------+------------------+----------------------+ | Kubelet API | 10.4.5.180:10250 | The Kubelet is the | | | | main component in | | | | every Node, all pod | | | | operations goes | | | | through the kubelet | +-------------+------------------+----------------------+ | Kubelet API | 10.4.5.174:10250 | The Kubelet is the | | | | main component in | | | | every Node, all pod | | | | operations goes | | | | through the kubelet | +-------------+------------------+----------------------+ | Kubelet API | 10.4.5.173:10250 | The Kubelet is the | | | | main component in | | | | every Node, all pod | | | | operations goes | | | | through the kubelet | +-------------+------------------+----------------------+ | Kubelet API | 10.4.5.146:10250 | The Kubelet is the | | | | main component in | | | | every Node, all pod | | | | operations goes | | | | through the kubelet | +-------------+------------------+----------------------+ | Kubelet API | 10.4.5.121:10250 | The Kubelet is the | | | | main component in | | | | every Node, all pod | | | | operations goes | | | | through the kubelet | +-------------+------------------+----------------------+ | Kubelet API | 10.4.5.118:10250 | The Kubelet is the | | | | main component in | | | | every Node, all pod | | | | operations goes | | | | through the kubelet | +-------------+------------------+----------------------+ | Kubelet API | 10.4.5.104:10250 | The Kubelet is the | | | | main component in | | | | every Node, all pod | | | | operations goes | | | | through the kubelet | +-------------+------------------+----------------------+ | Kubelet API | 10.4.5.100:10250 | The Kubelet is the | | | | main component in | | | | every Node, all pod | | | | operations goes | | | | through the kubelet | +-------------+------------------+----------------------+ | API Server | 10.4.5.66:6443 | The API server is in | | | | charge of all | | | | operations on the | | | | cluster. | +-------------+------------------+----------------------+ | API Server | 10.4.5.63:6443 | The API server is in | | | | charge of all | | | | operations on the | | | | cluster. | +-------------+------------------+----------------------+ | API Server | 10.4.5.174:6443 | The API server is in | | | | charge of all | | | | operations on the | | | | cluster. | +-------------+------------------+----------------------+ Vulnerabilities For further information about a vulnerability, search its ID in: https://avd.aquasec.com/ +--------+-----------------+----------------------+----------------------+----------------------+----------+ | ID | LOCATION | MITRE CATEGORY | VULNERABILITY | DESCRIPTION | EVIDENCE | +--------+-----------------+----------------------+----------------------+----------------------+----------+ | KHV002 | 10.4.5.66:6443 | Initial Access // | K8s Version | The kubernetes | v1.22.2 | | | | Exposed sensitive | Disclosure | version could be | | | | | interfaces | | obtained from the | | | | | | | /version endpoint | | +--------+-----------------+----------------------+----------------------+----------------------+----------+ | KHV002 | 10.4.5.63:6443 | Initial Access // | K8s Version | The kubernetes | v1.22.2 | | | | Exposed sensitive | Disclosure | version could be | | | | | interfaces | | obtained from the | | | | | | | /version endpoint | | +--------+-----------------+----------------------+----------------------+----------------------+----------+ | KHV002 | 10.4.5.174:6443 | Initial Access // | K8s Version | The kubernetes | v1.22.2 | | | | Exposed sensitive | Disclosure | version could be | | | | | interfaces | | obtained from the | | | | | | | /version endpoint | | +--------+-----------------+----------------------+----------------------+----------------------+----------+