The Kafka instance is available to the public without authentication.
An attacker could connect to the queue to extract private/confidential information in real-time.
Fingerprint: 43224224eeda9da960defeaa4e12f55f0b2d7b0999358e99397cd3dd29bdc19e
NoAuth Found topic rh.uam.business-role-delta-change.fsta Found topic rh.uam.business-role-master.fsta Found topic __consumer_offsets Found topic Test_Kafka Found topic rh.uam.hierarchy-delta-change.fsta Found topic rh.uam.staff-delta-change.fsta Found topic rh.uam.hierarchy-master.fsta
The Zookeeper server is public.
This could leak in infrastructure details and/or credentials being leaked and exploited by attackers.
Fingerprint: f2605c50bc23ae75fce66566fce665669750ae5c3857bdf869314340a2513fd4
NoAuth Node list: /log_dir_event_notification /isr_change_notification /zookeeper /zookeeper/quota /admin /admin/delete_topics /consumers /cluster /cluster/id /config /config/users /config/topics /config/topics/rh.uam.hierarchy-delta-change.fsta /config/topics/Test_Kafka /config/topics/rh.uam.business-role-master.fsta /config/topics/rh.uam.hierarchy-master.fsta /config/topics/rh.uam.staff-delta-change.fsta /config/topics/__consumer_offsets /config/topics/rh.uam.business-role-delta-change.fsta /config/brokers /config/clients /config/changes /feature /latest_producer_id_block /controller /brokers /brokers/seqid /brokers/topics /brokers/topics/rh.uam.hierarchy-delta-change.fsta /brokers/topics/rh.uam.hierarchy-delta-change.fsta/partitions /brokers/topics/rh.uam.hierarchy-delta-change.fsta/partitions/0 /brokers/topics/rh.uam.hierarchy-delta-change.fsta/partitions/0/state /brokers/topics/Test_Kafka /brokers/topics/Test_Kafka/partitions /brokers/topics/Test_Kafka/partitions/2 /brokers/topics/Test_Kafka/partitions/2/state /brokers/topics/Test_Kafka/partitions/1 /brokers/topics/Test_Kafka/partitions/1/state /brokers/topics/Test_Kafka/partitions/0 /brokers/topics/Test_Kafka/partitions/0/state /brokers/topics/rh.uam.business-role-master.fsta /brokers/topics/rh.uam.business-role-master.fsta/partitions /brokers/topics/rh.uam.business-role-master.fsta/partitions/0 /brokers/topics/rh.uam.business-role-master.fsta/partitions/0/state /brokers/topics/rh.uam.hierarchy-master.fsta /brokers/topics/rh.uam.hierarchy-master.fsta/partitions /brokers/topics/rh.uam.hierarchy-master.fsta/partitions/0 /brokers/topics/rh.uam.hierarchy-master.fsta/partitions/0/state /brokers/topics/rh.uam.staff-delta-change.fsta /brokers/topics/rh.uam.staff-delta-change.fsta/partitions /brokers/topics/rh.uam.staff-delta-change.fsta/partitions/0 /brokers/topics/rh.uam.staff-delta-change.fsta/partitions/0/state /brokers/topics/__consumer_offsets /brokers/topics/__consumer_offsets/partitions /brokers/topics/__consumer_offsets/partitions/35 /brokers/topics/__consumer_offsets/partitions/35/state /brokers/topics/__consumer_offsets/partitions/36 /brokers/topics/__consumer_offsets/partitions/36/state /brokers/topics/__consumer_offsets/partitions/33 /brokers/topics/__consumer_offsets/partitions/33/state /brokers/topics/__consumer_offsets/partitions/34 /brokers/topics/__consumer_offsets/partitions/34/state /brokers/topics/__consumer_offsets/partitions/39 /brokers/topics/__consumer_offsets/partitions/39/state /brokers/topics/__consumer_offsets/partitions/37 /brokers/topics/__consumer_offsets/partitions/37/state /brokers/topics/__consumer_offsets/partitions/38 /brokers/topics/__consumer_offsets/partitions/38/state /brokers/topics/__consumer_offsets/partitions/43 /brokers/topics/__consumer_offsets/partitions/43/state /brokers/topics/__consumer_offsets/partitions/42 /brokers/topics/__consumer_offsets/partitions/42/state /brokers/topics/__consumer_offsets/partitions/41 /brokers/topics/__consumer_offsets/partitions/41/state /brokers/topics/__consumer_offsets/partitions/40 /brokers/topics/__consumer_offsets/partitions/40/state /brokers/topics/__consumer_offsets/partitions/22 /brokers/topics/__consumer_offsets/partitions/22/state /brokers/topics/__consumer_offsets/partitions/23 /brokers/topics/__consumer_offsets/partitions/23/state /brokers/topics/__consumer_offsets/partitions/24 /brokers/topics/__consumer_offsets/partitions/24/state /brokers/topics/__consumer_offsets/partitions/25 /brokers/topics/__consumer_offsets/partitions/25/state /brokers/topics/__consumer_offsets/partitions/26 /brokers/topics/__consumer_offsets/partitions/26/state /brokers/topics/__consumer_offsets/partitions/27 /brokers/topics/__consumer_offsets/partitions/27/state /brokers/topics/__consumer_offsets/partitions/28 /brokers/topics/__consumer_offsets/partitions/28/state /brokers/topics/__consumer_offsets/partitions/29 /brokers/topics/__consumer_offsets/partitions/29/state /brokers/topics/__consumer_offsets/partitions/3 /brokers/topics/__consumer_offsets/partitions/3/state /brokers/topics/__consumer_offsets/partitions/2 /brokers/topics/__consumer_offsets/partitions/2/state /brokers/topics/__consumer_offsets/partitions/1 /brokers/topics/__consumer_offsets/partitions/1/state /brokers/topics/__consumer_offsets/partitions/0 /brokers/topics/__consumer_offsets/partitions/0/state /brokers/topics/__consumer_offsets/partitions/30 /brokers/topics/__consumer_offsets/partitions/30/state /brokers/topics/__consumer_offsets/partitions/7 /brokers/topics/__consumer_offsets/partitions/7/state /brokers/topics/__consumer_offsets/partitions/6 /brokers/topics/__consumer_offsets/partitions/6/state /brokers/topics/__consumer_offsets/partitions/32 /brokers/topics/__consumer_offsets/partitions/32/state /brokers/topics/__consumer_offsets/partitions/5 /brokers/topics/__consumer_offsets/partitions/5/state /brokers/topics/__consumer_offsets/partitions/31 /brokers/topics/__consumer_offsets/partitions/31/state /brokers/topics/__consumer_offsets/partitions/4 /brokers/topics/__consumer_offsets/partitions/4/state /brokers/topics/__consumer_offsets/partitions/9 /brokers/topics/__consumer_offsets/partitions/9/state /brokers/topics/__consumer_offsets/partitions/8 /brokers/topics/__consumer_offsets/partitions/8/state /brokers/topics/__consumer_offsets/partitions/19 /brokers/topics/__consumer_offsets/partitions/19/state /brokers/topics/__consumer_offsets/partitions/17 /brokers/topics/__consumer_offsets/partitions/17/state /brokers/topics/__consumer_offsets/partitions/18 /brokers/topics/__consumer_offsets/partitions/18/state /brokers/topics/__consumer_offsets/partitions/15 /brokers/topics/__consumer_offsets/partitions/15/state /brokers/topics/__consumer_offsets/partitions/16 /brokers/topics/__consumer_offsets/partitions/16/state /brokers/topics/__consumer_offsets/partitions/13 /brokers/topics/__consumer_offsets/partitions/13/state /brokers/topics/__consumer_offsets/partitions/14 /brokers/topics/__consumer_offsets/partitions/14/state /brokers/topics/__consumer_offsets/partitions/11 /brokers/topics/__consumer_offsets/partitions/11/state /brokers/topics/__consumer_offsets/partitions/12 /brokers/topics/__consumer_offsets/partitions/12/state /brokers/topics/__consumer_offsets/partitions/21 /brokers/topics/__consumer_offsets/partitions/21/state /brokers/topics/__consumer_offsets/partitions/20 /brokers/topics/__consumer_offsets/partitions/20/state /brokers/topics/__consumer_offsets/partitions/49 /brokers/topics/__consumer_offsets/partitions/49/state /brokers/topics/__consumer_offsets/partitions/48 /brokers/topics/__consumer_offsets/partitions/48/state /brokers/topics/__consumer_offsets/partitions/45 /brokers/topics/__consumer_offsets/partitions/45/state /brokers/topics/__consumer_offsets/partitions/44 /brokers/topics/__consumer_offsets/partitions/44/state /brokers/topics/__consumer_offsets/partitions/47 /brokers/topics/__consumer_offsets/partitions/47/state /brokers/topics/__consumer_offsets/partitions/46 /brokers/topics/__consumer_offsets/partitions/46/state /brokers/topics/__consumer_offsets/partitions/10 /brokers/topics/__consumer_offsets/partitions/10/state /brokers/topics/rh.uam.business-role-delta-change.fsta /brokers/topics/rh.uam.business-role-delta-change.fsta/partitions /brokers/topics/rh.uam.business-role-delta-change.fsta/partitions/0 /brokers/topics/rh.uam.business-role-delta-change.fsta/partitions/0/state /brokers/ids /brokers/ids/0 /controller_epoch
Elasticsearch and/or Kibana is currently open without authentication.
This results in all the database data made available publicly.
Severity: medium
Fingerprint: 831cb76b8e05df46c3ff837321e2b135b590fc89e6812a3ffa629f574a512238
Indices: 15, document count: 28, size: 185.4 kB Through Kibana endpoint Found index casa with 0 documents (283 B) Found index test with 1 documents (3.6 kB) Found index read-me-hacked-by-nightlionsecurity-bful5u with 1 documents (5.3 kB) Found index minio with 2 documents (11.4 kB) Found index .kibana_2 with 10 documents (37.6 kB) Found index .kibana_1 with 1 documents (4.2 kB) Found index .tasks with 1 documents (6.5 kB) Found index read-me-hacked-by-nightlionsecurity-69wsms with 1 documents (5.3 kB) Found index .kibana_task_manager_1 with 2 documents (22.3 kB) Found index service with 3 documents (58.4 kB) Found index cgi-bin with 1 documents (6.1 kB) Found index read-me-hacked-by-nightlionsecurity-cvushy with 1 documents (5.3 kB) Found index read-me-hacked-by-nightlionsecurity-711qxk with 1 documents (5.3 kB) Found index read-me-hacked-by-nightlionsecurity-7wf4es with 1 documents (5.3 kB) Found index api with 2 documents (8.7 kB)
Severity: medium
Fingerprint: 831cb76b8e05df4645baa45b8022ad6d7b60be217824bb573fa7b71f9f7b7a2f
Indices: 15, document count: 26, size: 161.8 kB Through Kibana endpoint Found index casa with 0 documents (283 B) Found index test with 1 documents (3.6 kB) Found index read-me-hacked-by-nightlionsecurity-bful5u with 1 documents (5.3 kB) Found index minio with 2 documents (11.4 kB) Found index .kibana_2 with 10 documents (37.5 kB) Found index .kibana_1 with 1 documents (4.2 kB) Found index .tasks with 1 documents (6.5 kB) Found index read-me-hacked-by-nightlionsecurity-69wsms with 1 documents (5.3 kB) Found index .kibana_task_manager_1 with 2 documents (22.3 kB) Found index service with 2 documents (39.1 kB) Found index cgi-bin with 1 documents (6.1 kB) Found index read-me-hacked-by-nightlionsecurity-cvushy with 1 documents (5.3 kB) Found index read-me-hacked-by-nightlionsecurity-711qxk with 1 documents (5.3 kB) Found index read-me-hacked-by-nightlionsecurity-7wf4es with 1 documents (5.3 kB) Found index api with 1 documents (4.5 kB)
Severity: medium
Fingerprint: 831cb76b8e05df4699c20ef5fca734173865b45f06a87efb2c15d10e53dd3ef7
Indices: 9, document count: 18, size: 92.7 kB Through Kibana endpoint Found index read-me-hacked-by-nightlionsecurity-bful5u with 1 documents (5.3 kB) Found index read-me-hacked-by-nightlionsecurity-69wsms with 1 documents (5.3 kB) Found index .kibana_task_manager_1 with 2 documents (22.3 kB) Found index read-me-hacked-by-nightlionsecurity-cvushy with 1 documents (5.3 kB) Found index read-me-hacked-by-nightlionsecurity-711qxk with 1 documents (5.3 kB) Found index read-me-hacked-by-nightlionsecurity-7wf4es with 1 documents (5.3 kB) Found index .kibana_2 with 9 documents (33.4 kB) Found index .kibana_1 with 1 documents (4.2 kB) Found index .tasks with 1 documents (6.5 kB)
Severity: medium
Fingerprint: 831cb76b8e05df4699c20ef5fca734172276ae621c5819fa53a24b1a52eb3013
Indices: 9, document count: 18, size: 92.7 kB Through Kibana endpoint Found index .kibana_task_manager_1 with 2 documents (22.3 kB) Found index read-me-hacked-by-nightlionsecurity-69wsms with 1 documents (5.3 kB) Found index read-me-hacked-by-nightlionsecurity-bful5u with 1 documents (5.3 kB) Found index read-me-hacked-by-nightlionsecurity-cvushy with 1 documents (5.3 kB) Found index read-me-hacked-by-nightlionsecurity-711qxk with 1 documents (5.3 kB) Found index read-me-hacked-by-nightlionsecurity-7wf4es with 1 documents (5.3 kB) Found index .kibana_2 with 9 documents (33.4 kB) Found index .kibana_1 with 1 documents (4.2 kB) Found index .tasks with 1 documents (6.5 kB)
Severity: medium
Fingerprint: 831cb76b8e05df461976ade3c54b3fa5ba31ad81aae984c0e443644084820091
Indices: 9, document count: 17, size: 88.7 kB Through Kibana endpoint Found index read-me-hacked-by-nightlionsecurity-69wsms with 1 documents (5.3 kB) Found index .kibana_task_manager_1 with 2 documents (22.3 kB) Found index read-me-hacked-by-nightlionsecurity-bful5u with 1 documents (5.3 kB) Found index read-me-hacked-by-nightlionsecurity-cvushy with 1 documents (5.3 kB) Found index read-me-hacked-by-nightlionsecurity-711qxk with 1 documents (5.3 kB) Found index read-me-hacked-by-nightlionsecurity-7wf4es with 1 documents (5.3 kB) Found index .kibana_2 with 8 documents (29.4 kB) Found index .kibana_1 with 1 documents (4.2 kB) Found index .tasks with 1 documents (6.5 kB)
Elasticsearch and/or Kibana is currently open without authentication.
This results in all the database data made available publicly.
Severity: medium
Fingerprint: 831cb76b8e05df4699c20ef51a9e398cd84f4f04af456b244cc4c16bda411951
Indices: 9, document count: 18, size: 92.7 kB Found index .kibana_task_manager_1 with 2 documents (22.3 kB) Found index read-me-hacked-by-nightlionsecurity-69wsms with 1 documents (5.3 kB) Found index read-me-hacked-by-nightlionsecurity-bful5u with 1 documents (5.3 kB) Found index read-me-hacked-by-nightlionsecurity-cvushy with 1 documents (5.3 kB) Found index read-me-hacked-by-nightlionsecurity-711qxk with 1 documents (5.3 kB) Found index read-me-hacked-by-nightlionsecurity-7wf4es with 1 documents (5.3 kB) Found index .kibana_2 with 9 documents (33.4 kB) Found index .kibana_1 with 1 documents (4.2 kB) Found index .tasks with 1 documents (6.5 kB)
Severity: medium
Fingerprint: 831cb76b8e05df461976ade37a4e397b5f4e3827b160a01202ff62f5a89b1443
Indices: 9, document count: 17, size: 88.7 kB Found index read-me-hacked-by-nightlionsecurity-bful5u with 1 documents (5.3 kB) Found index read-me-hacked-by-nightlionsecurity-69wsms with 1 documents (5.3 kB) Found index .kibana_task_manager_1 with 2 documents (22.3 kB) Found index read-me-hacked-by-nightlionsecurity-cvushy with 1 documents (5.3 kB) Found index read-me-hacked-by-nightlionsecurity-711qxk with 1 documents (5.3 kB) Found index read-me-hacked-by-nightlionsecurity-7wf4es with 1 documents (5.3 kB) Found index .kibana_2 with 8 documents (29.4 kB) Found index .kibana_1 with 1 documents (4.2 kB) Found index .tasks with 1 documents (6.5 kB)
Severity: medium
Fingerprint: 831cb76b8e05df467f99ce4560962d3c647b37d48456a054609f101bfcf74929
Indices: 9, document count: 12, size: 74.5 kB Found index .kibana_task_manager_1 with 2 documents (22.3 kB) Found index read-me-hacked-by-nightlionsecurity-69wsms with 1 documents (5.3 kB) Found index read-me-hacked-by-nightlionsecurity-bful5u with 1 documents (5.3 kB) Found index read-me-hacked-by-nightlionsecurity-cvushy with 1 documents (5.3 kB) Found index read-me-hacked-by-nightlionsecurity-711qxk with 1 documents (5.3 kB) Found index read-me-hacked-by-nightlionsecurity-7wf4es with 1 documents (5.3 kB) Found index .kibana_2 with 3 documents (15.2 kB) Found index .kibana_1 with 1 documents (4.2 kB) Found index .tasks with 1 documents (6.5 kB)
Severity: medium
Fingerprint: 831cb76b8e05df46759c6b30ba4e2663e4a8b2964388688e368311de368311de
Indices: 4, document count: 11, size: 62.5 kB Found index .kibana_task_manager_1 with 2 documents (22.3 kB) Found index .apm-agent-configuration with 0 documents (283 B) Found index api with 1 documents (5.6 kB) Found index .kibana_1 with 8 documents (34.3 kB)
Severity: medium
Fingerprint: 831cb76b8e05df4608d88491fcd5aaf0c9849c73dee50bf3dee50bf3dee50bf3
Indices: 3, document count: 10, size: 56.9 kB Found index .kibana_task_manager_1 with 2 documents (22.3 kB) Found index .apm-agent-configuration with 0 documents (283 B) Found index .kibana_1 with 8 documents (34.3 kB)