vulnerability
Red Hat OpenShift: CVE-2019-10213: openshift: Secret data written to pod logs when operator set at Debug level or higher
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 4 | (AV:N/AC:L/Au:S/C:P/I:N/A:N) | Oct 8, 2019 | Oct 8, 2019 | Apr 14, 2025 |
Severity
4
CVSS
(AV:N/AC:L/Au:S/C:P/I:N/A:N)
Published
Oct 8, 2019
Added
Oct 8, 2019
Modified
Apr 14, 2025
Description
OpenShift Container Platform, versions 4.1 and 4.2, does not sanitize secret data written to pod logs when the log level in a given operator is set to Debug or higher. A low privileged user could read pod logs to discover secret material if the log level has already been modified in an operator by a privileged user.
Solution(s)
linuxrpm-upgrade-openshift-enterprise-consolelinuxrpm-upgrade-ose-cluster-authenticationlinuxrpm-upgrade-ose-cluster-configlinuxrpm-upgrade-ose-cluster-kube-apiserverlinuxrpm-upgrade-ose-cluster-openshift-apiserver
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.