DEBIAN-CVE-2020-8565

DEBIAN-CVE-2020-8565 PUBLISHED CVSS 5.5 MEDIUM

In Kubernetes, if the logging level is set to at least 9, authorization and bearer tokens will be written to log files. This can occur both in API server logs and client tool output like kubectl. This affects <= v1.19.3, <= v1.18.10, <= v1.17.13, < v1.20.0-alpha2.

Risk Scores

CVSS v3.1

5.5

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Affected Products

Vendor	Product	Versions
Debian:12	kubernetes	0, 0, 0
Debian:13	kubernetes	0, 0, 0
Debian:14	kubernetes	0, 0, 0
Debian:11	kubernetes	0, 0, 0

Timeline

Dec 7, 2020 CVE Published
Apr 28, 2026 CVE Updated

References

https://security-tracker.debian.org/tracker/CVE-2020-8565 advisory

Open in Interactive Console →