CVE-2020-10750

Summary

Sensitive information written to a log file vulnerability was found in jaegertracing/jaeger before version 1.18.1 when the Kafka data store is used. This flaw allows an attacker with access to the container's log file to discover the Kafka credentials.

Affected Software

VendorProductVersion RangeStatus
the Jager projectjaegertracing/jaeger1.18.1affected

Weaknesses

  • CWE-532: CWE-532
  • CWE-200: CWE-200

ADP Enrichment

CVE Program Container

Additional References

References