SYM_CONF_0037 - SymbioticSec/Symbiotic-Vulnerability-Database GitHub Wiki
Execution with Unnecessary Privileges
| Property | Value |
|---|---|
| Language |  |
| Severity |  |
| CWE | CWE-250: Execution with Unnecessary Privileges |
| OWASP | A06:2017 - Security Misconfiguration |
| Confidence Level | High |
| Impact Level | High |
| Likelihood Level | High |
Description
The service is configured to run in privileged mode, which gives the container full root-level access to the host system. This setting bypasses many security restrictions and should be avoided unless absolutely necessary.
Impact
If exploited, an attacker could escape the container and gain control over the host machine, potentially accessing sensitive data, modifying system files, or taking down other services. This greatly increases the risk of a full system compromise.