​
DirectorySecurity Advisories
Sign In
Security Advisories

CGA-f5rg-h936-hh73

Published

Last updated

https://images.chainguard.dev/security/CGA-f5rg-h936-hh73
Package

kubeflow-pipelines

Latest Update
Not affected
Aliases
  • CVE-2020-8564
  • GHSA-8mjg-8c8g-6h85

Severity

4.7

Medium

CVSS V3

Summary

Kubernetes Sensitive Information leak via Log File

Description

In Kubernetes clusters using a logging level of at least 4, processing a malformed docker config file will result in the contents of the docker config file being leaked, which can include pull secrets or other registry credentials. This affects < v1.19.3, < v1.18.10, < v1.17.13.

References

Updates

Safe Source for Open Sourceâ„¢
Media KitContact Us
© 2024 Chainguard. All Rights Reserved.
Private PolicyTerms of Use

Product

Chainguard Images

Why Chainguard

Container Image SecurityVulnerability RemediationCompliance and Risk MitigationSoftware Supply Chain SecurityAI/ML Security

Customers

Customer StoriesChainguard Love

Company

About UsOpen SourceCareersNewsroomLegal

Resources

Unchained BlogResearchEventsTrust CenterDocumentation