Описание
Red Hat OpenShift Enterprise 3.2 and OpenShift Origin allow remote authenticated users to execute commands with root privileges by changing the root password in an sti builder image.
A flaw was found in the building of containers within OpenShift Enterprise. An attacker could submit an image for building that executes commands within the container as root, allowing them to potentially escalate privileges.
Дополнительная информация
Статус:
Important
https://bugzilla.redhat.com/show_bug.cgi?id=1316127Privilege escalation when changing root password in sti builder image
7.1 High
CVSS2
Связанные уязвимости
CVSS3: 8.8
nvd
больше 9 лет назад
Red Hat OpenShift Enterprise 3.2 and OpenShift Origin allow remote authenticated users to execute commands with root privileges by changing the root password in an sti builder image.
7.1 High
CVSS2