← Port Encyclopedia
10250
Kubelet
TCP
Container Critical Risk
Kubelet API — Kubernetes node agent, unauthenticated command execution

🔍 How to Scan Port 10250

nmap -sV -p 10250 target
nmap -sV -sC --script=banner -p 10250 target
nc -zv target 10250

🛡️ Security Considerations

  • Scan port 10250 with nmap -sV to identify the exact service and version
  • If Kubelet is not needed, close or firewall this port immediately
  • Check for default credentials if a management interface runs on this port
  • Use searchsploit kubelet to find known exploits
  • Monitor traffic on port 10250 with Wireshark or tcpdump for anomalies
  • Ensure the service is patched to the latest version to prevent known CVE exploitation

🔗 Related Container Ports

Port 2375
Docker
Port 2376
Docker-TLS
Port 2379
etcd
Port 2380
etcd-Peer
Port 6443
Kubernetes
Port 9000
Portainer
Port 10255
Kubelet-RO

📍 Nearby Ports

Port 10255
Kubelet-RO
📚 Learn Network Scanning — Free Course