Vulnerabilities > CVE-2019-19355 - Unspecified vulnerability in Redhat Openshift 4.0
Attack vector
LOCAL Attack complexity
HIGH Privileges required
LOW Confidentiality impact
HIGH Integrity impact
HIGH Availability impact
HIGH Summary
An insecure modification vulnerability in the /etc/passwd file was found in the openshift/ocp-release-operator-sdk. An attacker with access to the container could use this flaw to modify /etc/passwd and escalate their privileges. This CVE is specific to the openshift/ansible-operator-container as shipped in Openshift 4.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |