CVE-2025-24884 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

kube-audit-rest is a simple logger of mutation/creation requests to the k8s api. If the "full-elastic-stack" example vector configuration was used for a real cl…
Medium CVSS: 5.1

CVE-2025-24884

kube-audit-rest is a simple logger of mutation/creation requests to the k8s api. If the "full-elastic-stack" example vector configuration was used for a real cluster, the previous values of kubernetes secrets would have been disclosed in the audit messages. This vulnerability is fixed in 1.0.16.
Vendor
-
Product
-
CWE
CWE-200
Yayın Tarihi
2025-01-29 21:15:21
Güncelleme
2025-01-29 21:15:21
Source Identifier
security-advisories@github.com
KEV Date Added
-

Kategoriler

CWE-200 MEDIUM 2025

Referanslar

https://github.com/RichardoC/kube-audit-rest/commit/db1aa5b867256b0a7bf206544c6981ab068b73dc https://github.com/RichardoC/kube-audit-rest/security/advisories/GHSA-hcr5-wv4p-h2g2