Vulnerability Details CVE-2019-19352
An insecure modification vulnerability in the /etc/passwd file was found in the operator-framework/presto as shipped in Red Hat Openshift 4. An attacker with access to the container could use this flaw to modify /etc/passwd and escalate their privileges.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 8.9%
CVSS Severity
CVSS v3 Score 7.0
CVSS v2 Score 4.4
References
Products affected by CVE-2019-19352
-
cpe:2.3:a:redhat:openshift_container_platform:4.0