How severe is CVE-2019-11252?

CVE-2019-11252 has a CVSS v3 score of 5.9 (MEDIUM).

CVE-2019-11252

Name: kubernetes
Author: kubernetes

5.9MEDIUM

The Kubernetes kube-controller-manager in versions v1.0-v1.17 is vulnerable to a credential leakage via error messages in mount failure logs and events for AzureFile and CephFS volumes.

Published: 7/23/2020Updated: 11/21/2024

Description

The Kubernetes kube-controller-manager in versions v1.0-v1.17 is vulnerable to a credential leakage via error messages in mount failure logs and events for AzureFile and CephFS volumes.

AI AnalysisPowered by AI

Affected Products

kuberneteskubernetes

References

https://github.com/kubernetes/kubernetes/pull/88684
PatchThird Party Advisory
https://github.com/kubernetes/kubernetes/pull/88684
PatchThird Party Advisory