Описание
A privilege escalation vulnerability exists in the sudo functionality of OpenStack Kolla git master 05194e7618. A misconfiguration in /etc/sudoers within a container can lead to increased privileges.
A privilege escalation vulnerability exists in the sudo functionality of OpenStack Kolla. A misconfiguration in /etc/sudoers within a container can lead to increased privileges.
Отчет
To exploit this vulnerability, an attacker would need to have specialized access that allows them to modify how the container is run. The attacker would need to either modify the container's definition (such as by configuring environment variables or selecting the container image) or modify files in the container's file system. Both of these actions are typically restricted by user and group permissions. Hence, the impact for OpenStack is reduced to moderate.
Меры по смягчению последствий
/etc/sudoers within the container should use the secure_path option to prevent the PATH environment variable from being modified. However, this will not prevent other possibly dangerous environment variables from being changed. Ideally, the setenv option would be removed from /etc/sudoers altogether, and env_keep could be used for any safe environment variables that do not introduce security holes.
To avoid container compromises resulting in host compromise, avoid using privileged containers; prefer adding individual capabilities as needed.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat OpenStack Platform 16.1 | openstack-tripleo-common | Will not fix | ||
| Red Hat OpenStack Platform 16.2 | openstack-tripleo-common | Will not fix | ||
| Red Hat OpenStack Platform 17.0 | openstack-tripleo-common | Out of support scope | ||
| Red Hat OpenStack Platform 18.0 | python-tcib | Affected | ||
| Red Hat OpenStack Platform 17.1 for RHEL 8 | openstack-tripleo-common | Fixed | RHSA-2024:0191 | 16.01.2024 |
| Red Hat OpenStack Platform 17.1 for RHEL 9 | openstack-tripleo-common | Fixed | RHSA-2024:0216 | 16.01.2024 |
Показывать по
Дополнительная информация
Статус:
EPSS
7.8 High
CVSS3
Связанные уязвимости
A privilege escalation vulnerability exists in the sudo functionality of OpenStack Kolla git master 05194e7618. A misconfiguration in /etc/sudoers within a container can lead to increased privileges.
A privilege escalation vulnerability exists in the sudo functionality ...
OpenStack Kolla sudo privilege escalation vulnerability
EPSS
7.8 High
CVSS3