CVE-2020-8564

Published December 7th, 2020

View on NVD ↗

CVSS v3

4.7

MEDIUM

CVSS v2

2.1

LOW

Affected

PROJECT

Description

In Kubernetes clusters using a logging level of at least 4, processing a malformed docker config file will result in the contents of the docker config file being leaked, which can include pull secrets or other registry credentials. This affects < v1.19.3, < v1.18.10, < v1.17.13.

kubernetes/kubernetes

Production-Grade Container Scheduling and Management

GitHub

123K