CVE-2019-11273 is a vulnerability in Pivotal Software Pivotal Container Service
Published on July 23, 2019
PKS Telemetry logs credentials
Pivotal Container Services (PKS) versions 1.3.x prior to 1.3.7, and versions 1.4.x prior to 1.4.1, contains a vulnerable component which logs the username and password to the billing database. A remote authenticated user with access to those logs may be able to retrieve non-sensitive information.
Weakness Type
Insertion of Sensitive Information into Log File
Information written to log files can be of a sensitive nature and give valuable guidance to an attacker or expose sensitive user information.
Products Associated with CVE-2019-11273
Want to know whenever a new CVE is published for Pivotal Software Pivotal Container Service? stack.watch will email you.
Affected Versions
Pivotal Container Service (PKS):- Version 1.3.x prior to 1.3.7 is affected.
- Version 1.4.x prior to 1.4.1 is affected.
Exploit Probability
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.