This security bulletin contains information about 1 vulnerabilities.
Added versions from branch 4.2.x to affected software, added link to Red Hat advisory.
Exploit availability: NoDescription
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to incorrect default permissions for "/etc/passwd" file. A local user with access to the system can modify contents of the file and escalate privileges on the system.
Install updates from vendor's website.Vulnerable software versions
Red Hat OpenShift Container Platform: 4.3.0 - 4.3.2, 4.2.0 - 4.2.19
Can this vulnerability be exploited remotely?
Is there known malware, which exploits this vulnerability?