In Kubernetes clusters using a logging level of at least 4, processing a malformed docker config file will result in the contents of the docker config file being leaked, which can include pull secrets or other registry credentials. This affects < v1.19.3, < v1.18.10, < v1.17.13.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: kubernetes

Published: 2020-12-07T22:00:22.445619Z

Updated: 2024-09-16T17:32:40.199Z

Reserved: 2020-02-03T00:00:00

Link: CVE-2020-8564

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2020-12-07T22:15:21.307

Modified: 2024-11-21T05:39:02.430

Link: CVE-2020-8564

cve-icon Redhat

Severity : Moderate

Publid Date: 2020-10-14T00:00:00Z

Links: CVE-2020-8564 - Bugzilla