RHCOS 4 : OpenShift Container Platform 4.6.8 (RHSA-2020:5260)

The remote Red Hat Enterprise Linux CoreOS 4 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2020:5260 advisory. - kubernetes: Secret leaks in kube-controller-manager when using vSphere Provider CVE-2020-8563 Note that Nessus has not tested for this issu...

Linux Distros Unpatched Vulnerability : CVE-2020-8563

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Kubernetes clusters using VSphere as a cloud provider, with a logging level set to 4 or above, VSphere cloud credentials will be leaked in the cloud controll...

CVE-2020-8563 affecting package kubernetes-1.18.17 1.18.17-9

CVE-2020-8563 affecting package kubernetes-1.18.17 1.18.17-9. No patch is available currently...

CVE-2020-8563 affecting package kubernetes-1.18.14 1.18.14-8

CVE-2020-8563 affecting package kubernetes-1.18.14 1.18.14-8. No patch is available currently...

CVE-2020-8563 affecting package kubernetes-1.18.19 1.18.19-2

CVE-2020-8563 affecting package kubernetes-1.18.19 1.18.19-2. No patch is available currently...

CVE-2020-8563 affecting package kubernetes-1.18.17 1.18.17-6

CVE-2020-8563 affecting package kubernetes-1.18.17 1.18.17-6. No patch is available currently...

CVE-2020-8563 affecting package kubernetes 1.18.17-6

CVE-2020-8563 affecting package kubernetes 1.18.17-6. A patched version of the package is available...

Moderate: Red Hat Security Advisory: OpenShift Container Platform 4.7.0 security, bug fix, and enhancement update

Red Hat OpenShift Container Platform release 4.7.0 is now available. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the...

Moderate: Red Hat Security Advisory: OpenShift Container Platform 4.6.8 security and packages update

Red Hat OpenShift Container Platform release 4.6.8 is now available with updates to packages and images that fix several bugs. An update for ironic-images, openshift, openshift-ansible, openshift-clients, and python-eventlet, cri-o, openshift-kuryr, python-pyroute2 is now available for Red Hat...

RHEL 7 / 8 : OpenShift Container Platform 4.6.8 (RHSA-2020:5260)

The remote Redhat Enterprise Linux 7 / 8 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2020:5260 advisory. Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private clo...

CVE-2020-8563

In Kubernetes clusters using VSphere as a cloud provider, with a logging level set to 4 or above, VSphere cloud credentials will be leaked in the cloud controller manager's log. This affects v1.19.3...

CVE-2020-8563 Secret leaks in logs for vSphere Provider kube-controller-manager

In Kubernetes clusters using VSphere as a cloud provider, with a logging level set to 4 or above, VSphere cloud credentials will be leaked in the cloud controller manager's log. This affects v1.19.3...

CVE-2020-8563

CVE-2020-8563 describes a local-information leak in Kubernetes clusters using the vSphere cloud provider: when kube-controller-manager runs with logLevel >= 4, VSphere credentials can be written to logs. The issue affects Kubernetes versions prior to 1.19.3 (as stated in the description). Conn...

CVE-2020-8563

creationtimestamp| type| source ---|---|--- 2020-10-19 07:56:11+00:00| seen| https://t.me/k8security/128 2020-12-08 00:30:18+00:00| seen| https://t.me/cibsecurity/17218...