CVE-2020-8566

MEDIUM

Kubernetes <1.19.3-<1.18.10-<1.17.13 - Info Disclosure

Title source: llm
STIX 2.1

Description

In Kubernetes clusters using Ceph RBD as a storage provisioner, with logging level of at least 4, Ceph RBD admin secrets can be written to logs. This occurs in kube-controller-manager's logs during provisioning of Ceph RBD persistent claims. This affects < v1.19.3, < v1.18.10, < v1.17.13.

References (3)

Core 3
Core References
Mailing List, Patch, Third Party Advisory mailing-list x_refsource_mlist
https://groups.google.com/g/kubernetes-security-discuss/c/vm-HcrFUOCs/m/36utxAM5CwAJ
Third Party Advisory x_refsource_confirm
https://github.com/kubernetes/kubernetes/issues/95624
Third Party Advisory x_refsource_confirm
https://security.netapp.com/advisory/ntap-20210122-0006/

Scores

CVSS v3 4.7
EPSS 0.0009
EPSS Percentile 25.5%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N

Details

CWE
CWE-532
Status published
Products (2)
kubernetes/kubernetes 0 - 1.17.13Go
kubernetes/kubernetes 1.17.0 - 1.17.13
Published Dec 07, 2020
Tracked Since Feb 18, 2026