CVE-2020-10750
go/github.com/jaegertracing/jaeger
Inclusion of Sensitive Information in Log Files
Sensitive information written to a log file vulnerability was found in jaegertracing/jaeger
when the Kafka data store is used. This flaw allows an attacker with access to the container's log file to discover the Kafka credentials.
All versions before 1.18.1
Upgrade to version 1.18.1 or above.
2020-06-25
source |