{"id":"GO-2021-0065","summary":"Unauthorized credential disclosure in k8s.io/kubernetes and k8s.io/client-go","details":"Authorization tokens may be inappropriately logged if the verbosity level is set to a debug level.","aliases":["CVE-2019-11250","GHSA-jmrx-5g74-6v2f"],"modified":"2026-02-04T04:03:12.393777Z","published":"2021-04-14T20:04:52Z","related":["CGA-8hg9-p88r-9r79"],"database_specific":{"review_status":"REVIEWED","url":"https://pkg.go.dev/vuln/GO-2021-0065"},"references":[{"type":"FIX","url":"https://github.com/kubernetes/kubernetes/pull/81330"},{"type":"FIX","url":"https://github.com/kubernetes/kubernetes/commit/4441f1d9c3e94d9a3d93b4f184a591cab02a5245"},{"type":"WEB","url":"https://github.com/kubernetes/kubernetes/issues/81114"}],"affected":[{"package":{"name":"k8s.io/client-go","ecosystem":"Go","purl":"pkg:golang/k8s.io/client-go"},"ranges":[{"type":"SEMVER","events":[{"introduced":"0"},{"fixed":"0.17.0"}]}],"ecosystem_specific":{"imports":[{"path":"k8s.io/client-go/transport","symbols":["basicAuthRoundTripper.RoundTrip","bearerAuthRoundTripper.RoundTrip","debuggingRoundTripper.RoundTrip","impersonatingRoundTripper.RoundTrip","userAgentRoundTripper.RoundTrip"]}]},"database_specific":{"source":"https://vuln.go.dev/ID/GO-2021-0065.json"}}],"schema_version":"1.7.3"}