Back to search
CVE-2019-19354
Published: Mar 24, 2021
Modified: Aug 5, 2024
PUBLISHED
Description
An insecure modification vulnerability in the /etc/passwd file was found in the operator-framework/hadoop as shipped in Red Hat Openshift 4. An attacker with access to the container could use this flaw to modify /etc/passwd and escalate their privileges.
| Vendor | Product | Versions |
|---|---|---|
n/a | operator-framework/hadoop | affected as shipped in Red Hat Openshift 4 |
Weaknesses (CWE)
References
https://bugzilla.redhat.com/show_bug.cgi?id=1791534
x_refsource_MISC
https://access.redhat.com/articles/4859371
x_refsource_MISC
https://bugzilla.redhat.com/show_bug.cgi?id=1793278
x_refsource_MISC
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now