TF 0262 - SymbioticSec/Symbiotic-Vulnerability-Database GitHub Wiki
Image user should not be 'root
| Property | Value |
|---|---|
| Language |  |
| Severity |  |
| Vulnerability Type | omission |
Description
The container image is configured to run as the 'root' user by default, or does not specify a non-root user. This increases the risk of privilege escalation within the container environment.
Impact
If exploited, an attacker who gains access to the container could perform administrative actions, potentially escaping the container to access the host system or other containers, leading to full system compromise or data breaches.
Resolution
Add 'USER ' line to the Dockerfile