The CVE-2019-11246 vulnerability provides attackers the opportunity to write malicious files saved in a TAR package into any paths on your host by running the kubectl cp command through path traversal. Therefore, you must upgrade your kubectl version. For more information, see Vulnerability fix: CVE-2019-11246 related to kubectl cp.