This vulnerability that is fixed was discovered in Kubernetes dashboards of V1.10 and earlier. This vulnerability allowed attackers to bypass identity authentication and read secrets within the cluster by using the dashboard logon account. For more information, see Fix the vulnerability CVE-2018-18264.