VulnerableCode Package Details - pkg:golang/github.com/kubernetes/kubernetes@1.19.3

Search for packages

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerability

Summary

Fixed by

This package is not known to be affected by vulnerabilities.

Vulnerability	Summary	Aliases
VCID-17m6-nd3p-dybh	Kubernetes Sensitive Information leak via Log File In Kubernetes clusters using a logging level of at least 4, processing a malformed docker config file will result in the contents of the docker config file being leaked, which can include pull secrets or other registry credentials. This affects < v1.19.3, < v1.18.10, < v1.17.13.	CVE-2020-8564 GHSA-8mjg-8c8g-6h85
VCID-u8h6-kbws-8fbp	Sensitive Information leak via Log File in Kubernetes In Kubernetes clusters using VSphere as a cloud provider, with a logging level set to 4 or above, VSphere cloud credentials will be leaked in the cloud controller manager's log. This affects < v1.19.3.	CVE-2020-8563 GHSA-5xfg-wv98-264m
VCID-xw76-5x4h-y3az	Sensitive Information leak via Log File in Kubernetes In Kubernetes clusters using Ceph RBD as a storage provisioner, with logging level of at least 4, Ceph RBD admin secrets can be written to logs. This occurs in kube-controller-manager's logs during provisioning of Ceph RBD persistent claims. This affects < v1.19.3, < v1.18.10, < v1.17.13.	CVE-2020-8566 GHSA-5x96-j797-5qqw

Vulnerability

Summary

Aliases

VCID-17m6-nd3p-dybh

Kubernetes Sensitive Information leak via Log File In Kubernetes clusters using a logging level of at least 4, processing a malformed docker config file will result in the contents of the docker config file being leaked, which can include pull secrets or other registry credentials. This affects < v1.19.3, < v1.18.10, < v1.17.13.

CVE-2020-8564
GHSA-8mjg-8c8g-6h85

VCID-u8h6-kbws-8fbp

Sensitive Information leak via Log File in Kubernetes In Kubernetes clusters using VSphere as a cloud provider, with a logging level set to 4 or above, VSphere cloud credentials will be leaked in the cloud controller manager's log. This affects < v1.19.3.

CVE-2020-8563
GHSA-5xfg-wv98-264m

VCID-xw76-5x4h-y3az

Sensitive Information leak via Log File in Kubernetes In Kubernetes clusters using Ceph RBD as a storage provisioner, with logging level of at least 4, Ceph RBD admin secrets can be written to logs. This occurs in kube-controller-manager's logs during provisioning of Ceph RBD persistent claims. This affects < v1.19.3, < v1.18.10, < v1.17.13.

CVE-2020-8566
GHSA-5x96-j797-5qqw

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-01T12:58:19.151005+00:00	GithubOSV Importer	Fixing	VCID-17m6-nd3p-dybh	https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2023/02/GHSA-8mjg-8c8g-6h85/GHSA-8mjg-8c8g-6h85.json	38.0.0
2026-04-01T12:49:40.804143+00:00	GithubOSV Importer	Fixing	VCID-xw76-5x4h-y3az	https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2024/04/GHSA-5x96-j797-5qqw/GHSA-5x96-j797-5qqw.json	38.0.0
2026-04-01T12:49:27.927422+00:00	GithubOSV Importer	Fixing	VCID-u8h6-kbws-8fbp	https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2024/04/GHSA-5xfg-wv98-264m/GHSA-5xfg-wv98-264m.json	38.0.0