Use of externalIPs acts as an attack vector for exploiting CVE-2020-8554.
There is no patch for this issue. Therefore, it is recommended not to use externalIPs argument in Kubernetes service configuration.