kubectl does not neutralize escape, meta or control sequences contained in the raw data it outputs to a terminal. This includes but is not limited to the unstructured string fields in objects such as Events.
https://security.netapp.com/advisory/ntap-20220217-0003/
https://github.com/kubernetes/kubernetes/issues/101695
Source: Mitre, NVD
Published: 2022-01-07
Updated: 2022-02-28
Base Score: 2.1
Vector: CVSS2#AV:N/AC:H/Au:S/C:N/I:P/A:N
Severity: Low
Base Score: 3
Vector: CVSS:3.0/AV:N/AC:H/PR:L/UI:R/S:C/C:N/I:L/A:N