8x8: CVE-2019-11248 on http://█.█.█.█:9100/debug/pprof/goroutine

@mrk0anti reported to us an exposed debugging endpoint /debug/pprof over the unauthenticated Kubelet healthz port 9100. No sensitive information has been disclosed & the affected host belonged to our staging environment. The issue has been rectified...

PT-2019-12214

Name of the Vulnerable Software and Affected Versions Kubernetes versions prior to 1.15.0 Kubernetes versions prior to 1.14.4 Kubernetes versions prior to 1.13.8 Kubernetes versions prior to 1.12.10 Description The issue concerns the exposure of the debugging endpoint "/debug/pprof" over the...