Unrated severityNVD Advisory· Published Jul 23, 2019· Updated Sep 16, 2024
PKS Telemetry logs credentials
CVE-2019-11273
Description
Pivotal Container Services (PKS) versions 1.3.x prior to 1.3.7, and versions 1.4.x prior to 1.4.1, contains a vulnerable component which logs the username and password to the billing database. A remote authenticated user with access to those logs may be able to retrieve non-sensitive information.
Affected products
2- Pivotal/Pivotal Container Service (PKS)v5Range: 1.3.x prior to 1.3.7
Patches
Vulnerability mechanics
References
1- pivotal.io/security/CVE-2019-11273mitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.