In Kubernetes clusters using a logging level of at least 4, processing a malformed docker config file will result in the contents of the docker config file being leaked, which can include pull secrets or other registry credentials. This affects < v1.19.3, < v1.18.10, < v1.17.13.
CPE | Name | Operator | Version |
---|---|---|---|
kubernetes | ge | 1.19.0 | |
kubernetes | lt | 1.19.3 | |
kubernetes | ge | 1.18.0 | |
kubernetes | lt | 1.18.10 | |
kubernetes | ge | 1.17.0 | |
kubernetes | lt | 1.17.13 |