CLEANSTART-2026-EU52554

See a problem?
Import Source
https://github.com/cleanstart-dev/cleanstart-security-advisories/blob/main/advisories/2026/CLEANSTART-2026-EU52554.json
JSON Data
https://api.osv.dev/v1/vulns/CLEANSTART-2026-EU52554
Upstream
  • CVE-2020-8911
  • CVE-2020-8912
  • CVE-2026-25680
  • CVE-2026-25681
  • CVE-2026-27136
  • CVE-2026-27140
  • CVE-2026-27143
  • CVE-2026-27144
  • CVE-2026-27145
  • CVE-2026-32280
  • CVE-2026-32281
  • CVE-2026-32282
  • CVE-2026-32283
  • CVE-2026-32288
  • CVE-2026-32289
  • CVE-2026-33810
  • CVE-2026-33811
  • CVE-2026-33814
  • CVE-2026-39817
  • CVE-2026-39819
  • CVE-2026-39820
  • CVE-2026-39821
  • CVE-2026-39823
  • CVE-2026-39824
  • CVE-2026-39825
  • CVE-2026-39826
  • CVE-2026-39827
  • CVE-2026-39828
  • CVE-2026-39829
  • CVE-2026-39830
  • CVE-2026-39831
  • CVE-2026-39832
  • CVE-2026-39833
  • CVE-2026-39834
  • CVE-2026-39835
  • CVE-2026-39836
  • CVE-2026-42499
  • CVE-2026-42501
  • CVE-2026-42502
  • CVE-2026-42504
  • CVE-2026-42506
  • CVE-2026-42507
  • CVE-2026-42508
  • CVE-2026-46595
  • CVE-2026-46597
  • CVE-2026-46598
Published
2026-06-10T01:02:24.789269Z
Modified
2026-06-22T09:45:13.521825080Z
Severity
  • 9.8 (Critical) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
Summary
In Kubernetes, if the logging level is set to at least 9, authorization and bearer tokens will be written to log files
Details

Multiple security vulnerabilities affect the gostatsd package. In Kubernetes, if the logging level is set to at least 9, authorization and bearer tokens will be written to log files. See references for individual vulnerability details.

References

Affected packages

CleanStart / gostatsd

Package

Name
gostatsd

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
28.3.0-r2

Database specific

source 
"https://github.com/cleanstart-dev/cleanstart-security-advisories/blob/main/advisories/2026/CLEANSTART-2026-EU52554.json"