6.5 Medium
AI Score
Confidence
Low
0.0005 Low
EPSS
Percentile
17.3%
In Kubernetes clusters using VSphere as a cloud provider, with a logging level set to 4 or above, VSphere cloud credentials will be leaked in the cloud controller manager’s log. This affects < v1.19.3.
github.com/kubernetes/kubernetes/issues/95621
groups.google.com/g/kubernetes-security-discuss/c/vm-HcrFUOCs/m/36utxAM5CwAJ
security.netapp.com/advisory/ntap-20210122-0006/