Container should not have privileged rights
Severity | Exploitability | Providers | Categories |
---|---|---|---|
HIGH | HIGH | Kubernetes | PERMISSION |
Description
Containers most often do not need access to the host's root user. Privileged rights can grant more access than root user. As there is no strong boundary between containers and other process, the container privileged access could be used elsewhere. This option should be use with great care exclusively for system container requiring high privileges.
Impact
Potential data exposure | Visible in logs | User interaction required | Privileges required |
---|---|---|---|
True | False | False | False |
Escalation attacks. Privileged access to host. Running privileged operation on the machine.
Remediation guidelines
Remove the privilege rights of the container. This can be done by changing 'containers[].securityContext.privileged' to 'false'.