CVE-2020-3996
N/A
N/A
Summary
Velero (prior to 1.4.3 and 1.5.2) in some instances doesn’t properly manage volume identifiers which may result in information leakage to unauthorized users.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | Velero | Velero versions 0.* and 1.* prior to 1.4.3 and 1.5.2 | affected |
Weaknesses
- Information leakage due to incorrect volume assignment
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.