CVE-2019-11243

Description

Kubernetes did not effectively clear service account credentials in k8s.io/kubernetes

Affected packages (2)

• Go/k8s.io/kubernetes>= 1.12.0, < 1.12.5
• Go/k8s.io/kubernetes>= 1.12.0, < 1.12.5, >= 1.13.0, < 1.13.1

CVSS scores

References (5)

• ADVISORYhttps://github.com/advisories/GHSA-gc2p-g4fg-29vh
• ADVISORYhttps://nvd.nist.gov/vuln/detail/CVE-2019-11243
• PATCHhttps://github.com/kubernetes/kubernetes
• WEBhttps://github.com/kubernetes/kubernetes/issues/76797
• WEBhttps://security.netapp.com/advisory/ntap-20190509-0002