Pivotal Container Services (PKS) versions 1.3.x before 1.3.7, and versions 1.4.x before 1.4.1, contains a vulnerable component which logs the username and password to the billing database. A remote authenticated user with access to those logs may be able to retrieve non-sensitive information.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
pivotal software pivotal container service |