Incorrect Permission Assignment for Critical Resource
| Property | |
|---|---|
| Language |  |
| Severity |  |
| CWE | CWE-732: Incorrect Permission Assignment for Critical Resource |
| OWASP | A05:2021 - Security Misconfiguration |
| Confidence Level | Low |
| Impact Level | High |
| Likelihood Level | Low |
Description#
The service is configured with a writable root filesystem, allowing applications inside the container to modify or add files. This increases the risk of unauthorized changes or the installation of malicious software if the container is compromised.
Impact#
If exploited, an attacker could alter application files, persist malicious code, or abuse the writable filesystem to escalate their access. This could lead to data breaches, service disruption, or facilitate lateral movement within your infrastructure.