daffainfo
/
nuclei-templates
mirror of https://github.com/daffainfo/nuclei-templates.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Enhancement: misconfiguration/kubernetes/kubernetes-pods.yaml by mp

patch-1
MostInterestingBotInTheWorld 2022-05-20 11:52:05 -04:00
parent 0a55f896ed
commit 7e46aa1c27
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
misconfiguration/kubernetes/kubernetes-pods.yaml
View File

@ -4,7 +4,7 @@ info:
name: Kubernetes Pods - API Discovery & Remote Code Execution name: Kubernetes Pods - API Discovery & Remote Code Execution
author: ilovebinbash,geeknik,0xtavian author: ilovebinbash,geeknik,0xtavian
severity: critical severity: critical
description: A Kubernetes Pods API was discovered. When the service port is available, anyone can execute commands inside the container. description: A Kubernetes Pods API was discovered. When the service port is available, unauthenticated users can execute commands inside the container.
reference: reference:
- https://github.com/officialhocc/Kubernetes-Kubelet-RCE - https://github.com/officialhocc/Kubernetes-Kubelet-RCE
- https://blog.binaryedge.io/2018/12/06/kubernetes-being-hijacked-worldwide/ - https://blog.binaryedge.io/2018/12/06/kubernetes-being-hijacked-worldwide/