2020-06-17 17:11:32 +00:00
id : kubernetes-pods-api
2020-09-17 08:50:01 +00:00
2020-06-17 15:56:34 +00:00
info :
name : Kubernetes Pods API
2020-12-21 19:35:12 +00:00
author : ilovebinbash & geeknik & 0xtavian
2020-09-13 06:20:06 +00:00
severity : critical
2020-09-17 08:50:01 +00:00
description : When the service port is available, anyone can execute commands inside the container. See https://github.com/officialhocc/Kubernetes-Kubelet-RCE for inspiration.
2020-12-21 19:35:12 +00:00
reference : https://blog.binaryedge.io/2018/12/06/kubernetes-being-hijacked-worldwide/
2020-09-17 08:50:01 +00:00
2020-06-17 15:56:34 +00:00
requests :
- method : GET
path :
2020-09-17 08:50:01 +00:00
- '{{BaseURL}}/pods'
2020-12-21 19:35:12 +00:00
- '{{BaseURL}}/api/v1/pods'
2020-06-17 15:56:34 +00:00
- '{{BaseURL}}:10250/pods'
2020-07-08 11:38:57 +00:00
matchers-condition : and
2020-06-17 15:56:34 +00:00
matchers :
- type : word
words :
- "apiVersion"
part : body
- type : word
words :
- "application/json"
2020-11-16 17:35:49 +00:00
part : header
- type : status
status :
- 200