Security vulnerabilities

  • Status Closed
  • Assigned To
  • Private
Attached to Project: Security vulnerabilities
Opened by freetb - 15.02.2024
Last edited by cbay - 16.02.2024

FS#30 - Information Disclosure on cAdvisor software via Origin IP


I discovered that cAdvisor, a container monitoring and management tool, is exposed to the public internet. Using OSINT techniques, this endpoint was discovered on one of the company servers. This information disclosure could potentially be used by attackers for various malicious purposes, such as mapping vulnerable targets or launching further attacks.


To demonstrate this issue, we can access the cAdvisor web interface via the URLs;

Browse through the URIs for more information on processes running, users involved, resource usage, container names e.t.c.


Restrict access to cAdvisor. Limit access to the cAdvisor interface to trusted users or networks only.

Closed by  cbay
16.02.2024 08:04
Reason for closing:  Invalid
cbay commented on 15.02.2024 08:37


That IP address is a sandbox (as you can guess by looking up the reverse hostname) which is being used for tests. There's nothing valuable you can get from it. In particular, no actual client data or information is on that server.

Kind regards,


Available keyboard shortcuts


Task Details

Task Editing