PT-2018-10136 · Red Hat · Openshift Container Platform

Sam Fowler

Published

2018-07-02

Updated

2019-10-09

CVE-2018-10843

CVSS v2.0

9.0

High

Vector

AV:N/AC:L/Au:S/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Openshift Container Platform versions prior to atomic-openshift 3.7.53 Openshift Container Platform versions prior to atomic-openshift 3.9.31

Description The issue allows for privilege escalation, enabling the assemble script to run as the root user in a non-privileged container. This could allow an attacker to open network connections and possibly perform other actions on the host that are normally only available to a root user.

Recommendations For versions prior to atomic-openshift 3.7.53, update to atomic-openshift 3.7.53 or later. For versions prior to atomic-openshift 3.9.31, update to atomic-openshift 3.9.31 or later.

Fix

Incorrect Permission

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-732CWE-20

Related Identifiers

CVE-2018-10843

RHSA-2018:2013

Affected Products

Openshift Container Platform

PT-2018-10136 · Red Hat · Openshift Container Platform

CVE-2018-10843

Weakness Enumeration

Related Identifiers

Affected Products

References · 4