2022-02-24 03:02:34,168 INFO kube_hunter.modules.report.collector Started hunting 2022-02-24 03:02:34,168 INFO kube_hunter.modules.report.collector Discovering Open Kubernetes Services 2022-02-24 03:02:34,537 INFO kube_hunter.modules.report.collector Found open service "Kubelet API" at 10.4.5.191:10250 2022-02-24 03:02:35,137 INFO kube_hunter.modules.report.collector Found open service "Kubelet API" at 10.4.5.40:10250 2022-02-24 03:02:35,169 INFO kube_hunter.modules.report.collector Found open service "Kubelet API" at 10.4.5.218:10250 2022-02-24 03:02:35,174 INFO kube_hunter.modules.report.collector Found open service "Kubelet API" at 10.4.5.131:10250 2022-02-24 03:02:35,185 INFO kube_hunter.modules.report.collector Found open service "Kubelet API" at 10.4.5.25:10250 2022-02-24 03:02:35,241 INFO kube_hunter.modules.report.collector Found open service "Kubelet API" at 10.4.5.168:10250 2022-02-24 03:02:35,266 INFO kube_hunter.modules.report.collector Found open service "Kubelet API" at 10.4.5.102:10250 2022-02-24 03:02:35,269 INFO kube_hunter.modules.report.collector Found open service "Kubelet API" at 10.4.5.205:10250 2022-02-24 03:02:35,294 INFO kube_hunter.modules.report.collector Found open service "Kubelet API" at 10.4.5.110:10250 2022-02-24 03:02:35,332 INFO kube_hunter.modules.report.collector Found open service "Kubelet API" at 10.4.5.225:10250 2022-02-24 03:02:35,549 INFO kube_hunter.modules.report.collector Found open service "Kubelet API" at 10.4.5.43:10250 2022-02-24 03:02:35,593 INFO kube_hunter.modules.report.collector Found open service "Kubelet API" at 10.4.5.209:10250 2022-02-24 03:02:35,634 INFO kube_hunter.modules.report.collector Found open service "Kubelet API" at 10.4.5.207:10250 2022-02-24 03:02:35,749 INFO kube_hunter.modules.report.collector Found open service "Kubelet API" at 10.4.5.126:10250 2022-02-24 03:02:35,877 INFO kube_hunter.modules.report.collector Found open service "Kubelet API" at 10.4.5.214:10250 2022-02-24 03:02:36,029 INFO kube_hunter.modules.report.collector Found open service "API Server" at 10.4.5.102:6443 2022-02-24 03:02:36,335 INFO kube_hunter.modules.report.collector Found open service "API Server" at 10.4.5.191:6443 2022-02-24 03:02:36,430 INFO kube_hunter.modules.report.collector Found open service "API Server" at 10.4.5.126:6443 2022-02-24 03:02:36,480 INFO kube_hunter.modules.report.collector Found vulnerability "K8s Version Disclosure" in 10.4.5.191:6443 2022-02-24 03:02:36,492 INFO kube_hunter.modules.report.collector Found vulnerability "K8s Version Disclosure" in 10.4.5.126:6443 2022-02-24 03:02:36,500 INFO kube_hunter.modules.report.collector Found vulnerability "K8s Version Disclosure" in 10.4.5.102:6443 Nodes +-------------+------------+ | TYPE | LOCATION | +-------------+------------+ | Node/Master | 10.4.5.43 | +-------------+------------+ | Node/Master | 10.4.5.40 | +-------------+------------+ | Node/Master | 10.4.5.25 | +-------------+------------+ | Node/Master | 10.4.5.225 | +-------------+------------+ | Node/Master | 10.4.5.218 | +-------------+------------+ | Node/Master | 10.4.5.214 | +-------------+------------+ | Node/Master | 10.4.5.209 | +-------------+------------+ | Node/Master | 10.4.5.207 | +-------------+------------+ | Node/Master | 10.4.5.205 | +-------------+------------+ | Node/Master | 10.4.5.191 | +-------------+------------+ | Node/Master | 10.4.5.168 | +-------------+------------+ | Node/Master | 10.4.5.131 | +-------------+------------+ | Node/Master | 10.4.5.126 | +-------------+------------+ | Node/Master | 10.4.5.110 | +-------------+------------+ | Node/Master | 10.4.5.102 | +-------------+------------+ Detected Services +-------------+------------------+----------------------+ | SERVICE | LOCATION | DESCRIPTION | +-------------+------------------+----------------------+ | Kubelet API | 10.4.5.43:10250 | The Kubelet is the | | | | main component in | | | | every Node, all pod | | | | operations goes | | | | through the kubelet | +-------------+------------------+----------------------+ | Kubelet API | 10.4.5.40:10250 | The Kubelet is the | | | | main component in | | | | every Node, all pod | | | | operations goes | | | | through the kubelet | +-------------+------------------+----------------------+ | Kubelet API | 10.4.5.25:10250 | The Kubelet is the | | | | main component in | | | | every Node, all pod | | | | operations goes | | | | through the kubelet | +-------------+------------------+----------------------+ | Kubelet API | 10.4.5.225:10250 | The Kubelet is the | | | | main component in | | | | every Node, all pod | | | | operations goes | | | | through the kubelet | +-------------+------------------+----------------------+ | Kubelet API | 10.4.5.218:10250 | The Kubelet is the | | | | main component in | | | | every Node, all pod | | | | operations goes | | | | through the kubelet | +-------------+------------------+----------------------+ | Kubelet API | 10.4.5.214:10250 | The Kubelet is the | | | | main component in | | | | every Node, all pod | | | | operations goes | | | | through the kubelet | +-------------+------------------+----------------------+ | Kubelet API | 10.4.5.209:10250 | The Kubelet is the | | | | main component in | | | | every Node, all pod | | | | operations goes | | | | through the kubelet | +-------------+------------------+----------------------+ | Kubelet API | 10.4.5.207:10250 | The Kubelet is the | | | | main component in | | | | every Node, all pod | | | | operations goes | | | | through the kubelet | +-------------+------------------+----------------------+ | Kubelet API | 10.4.5.205:10250 | The Kubelet is the | | | | main component in | | | | every Node, all pod | | | | operations goes | | | | through the kubelet | +-------------+------------------+----------------------+ | Kubelet API | 10.4.5.191:10250 | The Kubelet is the | | | | main component in | | | | every Node, all pod | | | | operations goes | | | | through the kubelet | +-------------+------------------+----------------------+ | Kubelet API | 10.4.5.168:10250 | The Kubelet is the | | | | main component in | | | | every Node, all pod | | | | operations goes | | | | through the kubelet | +-------------+------------------+----------------------+ | Kubelet API | 10.4.5.131:10250 | The Kubelet is the | | | | main component in | | | | every Node, all pod | | | | operations goes | | | | through the kubelet | +-------------+------------------+----------------------+ | Kubelet API | 10.4.5.126:10250 | The Kubelet is the | | | | main component in | | | | every Node, all pod | | | | operations goes | | | | through the kubelet | +-------------+------------------+----------------------+ | Kubelet API | 10.4.5.110:10250 | The Kubelet is the | | | | main component in | | | | every Node, all pod | | | | operations goes | | | | through the kubelet | +-------------+------------------+----------------------+ | Kubelet API | 10.4.5.102:10250 | The Kubelet is the | | | | main component in | | | | every Node, all pod | | | | operations goes | | | | through the kubelet | +-------------+------------------+----------------------+ | API Server | 10.4.5.191:6443 | The API server is in | | | | charge of all | | | | operations on the | | | | cluster. | +-------------+------------------+----------------------+ | API Server | 10.4.5.126:6443 | The API server is in | | | | charge of all | | | | operations on the | | | | cluster. | +-------------+------------------+----------------------+ | API Server | 10.4.5.102:6443 | The API server is in | | | | charge of all | | | | operations on the | | | | cluster. | +-------------+------------------+----------------------+ Vulnerabilities For further information about a vulnerability, search its ID in: https://avd.aquasec.com/ +--------+-----------------+----------------------+----------------------+----------------------+----------+ | ID | LOCATION | MITRE CATEGORY | VULNERABILITY | DESCRIPTION | EVIDENCE | +--------+-----------------+----------------------+----------------------+----------------------+----------+ | KHV002 | 10.4.5.191:6443 | Initial Access // | K8s Version | The kubernetes | v1.22.2 | | | | Exposed sensitive | Disclosure | version could be | | | | | interfaces | | obtained from the | | | | | | | /version endpoint | | +--------+-----------------+----------------------+----------------------+----------------------+----------+ | KHV002 | 10.4.5.126:6443 | Initial Access // | K8s Version | The kubernetes | v1.22.2 | | | | Exposed sensitive | Disclosure | version could be | | | | | interfaces | | obtained from the | | | | | | | /version endpoint | | +--------+-----------------+----------------------+----------------------+----------------------+----------+ | KHV002 | 10.4.5.102:6443 | Initial Access // | K8s Version | The kubernetes | v1.22.2 | | | | Exposed sensitive | Disclosure | version could be | | | | | interfaces | | obtained from the | | | | | | | /version endpoint | | +--------+-----------------+----------------------+----------------------+----------------------+----------+