Name of the Vulnerable Software and Affected Versions Kubernetes client versions prior to 3.5.0

Description The issue allows sensitive data from Secret resources to be logged into the debug log when debug logging is enabled via the DEBUG environment variable. This could expose sensitive information to unauthorized users who have access to Pod logs. The estimated number of potentially affected devices is not specified.

Recommendations For versions prior to 3.5.0, upgrade to 3.5.0 or newer. As a temporary workaround, consider disabling debug logging entirely or exclude the kubernetes:client debug item, for example, using DEBUG=*,-kubernetes:client.