Execution with Unnecessary Privileges
| Property | |
|---|---|
| Language |  |
| Severity |  |
| CWE | CWE-250: Execution with Unnecessary Privileges |
| OWASP | A06:2017 - Security Misconfiguration |
| Confidence Level | High |
| Impact Level | High |
| Likelihood Level | High |
Description#
The service is configured to run in privileged mode, which gives the container full root-level access to the host system. This setting bypasses many security restrictions and should be avoided unless absolutely necessary.
Impact#
If exploited, an attacker could escape the container and gain control over the host machine, potentially accessing sensitive data, modifying system files, or taking down other services. This greatly increases the risk of a full system compromise.