Running Pods Allow Elevated User Privileges
CVE-2022-43915

8.1HIGH

Key Information:

Vendor: IBM
Status: App Connect Enterprise Certified Container
Vendor: CVE Published:; 24 August 2024

Summary

IBM App Connect Enterprise Certified Container versions are vulnerable to privilege escalation due to inadequate limitations on calls to unshare in running Pods. This allows users with privileged access to execute unauthorized commands, potentially elevating their privileges within the containerized environment. Attackers could exploit this weakness to gain additional access and control over system resources, presenting risks to data integrity and system security. Organizations utilizing affected versions should implement necessary security measures to mitigate potential threats and ensure the integrity of their deployment.

Affected Version(s)

App Connect Enterprise Certified Container 5.0, 7.1, 7.2, 8.0, 8.1, 8.2, 9.0, 9.1, 9.2, 10.0, 10.1, 11.0, 11.1, 11.2, 11.3, 11.4, 11.5, 11.6, 12.0, 12.1

References

https://www.ibm.com/support/pages/node/7166463

vendor-advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/241037

vdb-entry

CVSS V3.1

Score:

8.1

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Aug 24, 2024
Vulnerability Reserved
Oct 26, 2022