Vulnerability
Description
The unauthenticated Kubelet healthz port exposes the debugging endpoint /debug/pprof. The Kubelet’s healthz port exposes the go pprof endpoint.
Debugging endpoint can potentially leak sensitive information such as internal Kubelet memory addresses and configuration, or for limited denial of service. Versions prior to 1.15.0, 1.14.4, 1.13.8, and 1.12.10 are affected. The issue is of medium severity, but not exposed by the default configuration.
Recommendations
- Update to the latest version
Written by
Experience the Beagle Security platform
Unlock one full penetration test and all Advanced plan features free for 10 days
