CVE-2019-14854
MEDIUMOpenShift Container Platform 4 - Sensitive Information Exposure in Static Pod Logs
Title source: llmDescription
OpenShift Container Platform 4 does not sanitize secret data written to static pod logs when the log level in a given operator is set to Debug or higher. A low privileged user could read pod logs to discover secret material if the log level has already been modified in an operator by a privileged user.
References (1)
Core 1
Core References
Exploit, Issue Tracking, Third Party Advisory x_refsource_confirm
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-14854
Scores
CVSS v3
6.5
EPSS
0.0080
EPSS Percentile
51.6%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Details
CWE
CWE-532
CWE-117
Status
published
Products (2)
redhat/openshift_container_platform
4.1
redhat/openshift_container_platform
4.2
Published
Jan 07, 2020
Tracked Since
Feb 18, 2026