Kubernetes unprivileged API access

High Nessus Plugin ID 110768


Kubernetes allows unauthenticated command execution via API access if not configured properly.


A remote, unauthenticated attacker is able to leverage API calls
to execute commands and scripts or gain shell access via port 10250 (https)


Only allow localhost connections, set up firewall and authentication.

See Also


Plugin Details

Severity: High

ID: 110768

File Name: kube_unprivileged_api.nasl

Version: 1.4

Type: remote

Family: CGI abuses

Published: 2018/06/28

Modified: 2018/11/15

Risk Information

Risk Factor: High

CVSS Score Source: manual

CVSS Score Rationale: Nvd has no score for this cve. tenable research analyzed the issue and assigned one.

CVSS v2.0

Base Score: 9.3

Vector: CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C

CVSS v3.0

Base Score: 8.8

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Vulnerability Information

Vulnerability Publication Date: 2018/06/14