Vulnerability Details CVE-2019-11273
Pivotal Container Services (PKS) versions 1.3.x prior to 1.3.7, and versions 1.4.x prior to 1.4.1, contains a vulnerable component which logs the username and password to the billing database. A remote authenticated user with access to those logs may be able to retrieve non-sensitive information.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 39.8%
CVSS Severity
CVSS v3 Score 2.2
CVSS v2 Score 4.0
Products affected by CVE-2019-11273
-
cpe:2.3:a:pivotal_software:pivotal_container_service:1.3.0
-
cpe:2.3:a:pivotal_software:pivotal_container_service:1.3.1
-
cpe:2.3:a:pivotal_software:pivotal_container_service:1.3.2
-
cpe:2.3:a:pivotal_software:pivotal_container_service:1.3.3
-
cpe:2.3:a:pivotal_software:pivotal_container_service:1.3.4
-
cpe:2.3:a:pivotal_software:pivotal_container_service:1.3.5
-
cpe:2.3:a:pivotal_software:pivotal_container_service:1.3.6
-
cpe:2.3:a:pivotal_software:pivotal_container_service:1.4.0