Joseph Lamagna-Reiter

**Name of the Vulnerable Software and Affected Versions** Red Hat Openshift versions 3.11 and 4 **Description** A flaw was discovered in the openshift/ansible-service-broker, allowing an attacker with access to the container to modify the /etc/passwd file and potentially escalate their privileges. **Recommendations** For Red Hat Openshift version 3.11, update the openshift/ansible-service-broker to a version that fixes this issue. For Red Hat Openshift version 4, update the openshift/ansible-service-broker to a version that fixes this issue.

**Name of the Vulnerable Software and Affected Versions** operator-framework/operator-metering (affected versions not specified) **Description** A flaw was discovered in the container operator-framework/operator-metering, which is shipped in Red Hat Openshift 4. This issue allows an attacker with access to the container to modify the /etc/passwd file, potentially leading to privilege escalation. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** openshift/apb-base versions prior to 4.3.5 openshift/apb-base versions prior to 4.2.21 openshift/apb-base versions prior to 4.1.37 openshift/apb-base versions prior to 3.11.188-4 **Description** An insecure modification vulnerability in the /etc/passwd file was found in the container openshift/apb-base. An attacker with access to the container could use this flaw to modify /etc/passwd and escalate their privileges. **Recommendations** For versions prior to 4.3.5, update to version 4.3.5 or later. For versions prior to 4.2.21, update to version 4.2.21 or later. For versions prior to 4.1.37, update to version 4.1.37 or later. For versions prior to 3.11.188-4, update to version 3.11.188-4 or later.

**Name of the Vulnerable Software and Affected Versions** openshift/mediawiki-apb versions prior to 4.3.0 **Description** A vulnerability was found in the container openshift/mediawiki-apb, where an insecure modification vulnerability in the /etc/passwd file allows an attacker with access to the container to modify /etc/passwd and escalate their privileges. **Recommendations** For versions prior to 4.3.0, update to version 4.3.0 or later to resolve the issue. As a temporary workaround, consider restricting access to the /etc/passwd file in the container until a patch is available.

**Name of the Vulnerable Software and Affected Versions** openshift/mediawiki versions prior to 4.3.0 **Description** A vulnerability was found in the openshift/mediawiki, where an insecure modification vulnerability in the /etc/passwd file allows an attacker with access to the container to modify /etc/passwd and escalate their privileges. The attacker can use this flaw to gain elevated access. **Recommendations** For versions prior to 4.3.0, update to version 4.3.0 or later to resolve the issue. As a temporary workaround, consider restricting access to the /etc/passwd file to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** openshift/ocp-release-operator-sdk (affected versions not specified) openshift/ansible-operator-container as shipped in Openshift 4 (affected versions not specified) **Description** An insecure modification vulnerability in the /etc/passwd file was found. An attacker with access to the container could use this flaw to modify /etc/passwd and escalate their privileges. **Recommendations** For openshift/ocp-release-operator-sdk, at the moment, there is no information about a newer version that contains a fix for this vulnerability. For openshift/ansible-operator-container as shipped in Openshift 4, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** openshift-enterprise versions 3.11 openshift-enterprise versions 4.1 through 4.3 **Description** A security issue has been discovered where multiple containers in the affected versions modify the permissions of /etc/passwd, allowing users other than root to modify it. An attacker with access to the running container can exploit this to add a user and escalate their privileges. **Recommendations** For openshift-enterprise version 3.11, update to a version that includes the fix for this issue. For openshift-enterprise versions 4.1 through 4.3, update to a version that includes the fix for this issue. As a temporary workaround, consider restricting access to the containers to minimize the risk of exploitation.