Описание
Information Exposure in jaeger
Sensitive information written to a log file vulnerability was found in jaegertracing/jaeger before version 1.18.1 when the Kafka data store is used. This flaw allows an attacker with access to the container's log file to discover the Kafka credentials.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2020-10750
- https://github.com/jaegertracing/jaeger/commit/360c38bec3f9718ebba7ddbf0b409b05995f3ace
- https://bugzilla.redhat.com/show_bug.cgi?id=1838401
- https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2020-10750
- https://github.com/jaegertracing/jaeger/releases/tag/v1.18.1
Пакеты
github.com/jaegertracing/jaeger
< 1.18.1
1.18.1
Связанные уязвимости
Sensitive information written to a log file vulnerability was found in jaegertracing/jaeger before version 1.18.1 when the Kafka data store is used. This flaw allows an attacker with access to the container's log file to discover the Kafka credentials.
Sensitive information written to a log file vulnerability was found in jaegertracing/jaeger before version 1.18.1 when the Kafka data store is used. This flaw allows an attacker with access to the container's log file to discover the Kafka credentials.