Published: 18/03/2020 Updated: 12/02/2023

CVSS v2 Base Score: 4.4 | Impact Score: 6.4 | Exploitability Score: 3.4

CVSS v3 Base Score: 7 | Impact Score: 5.9 | Exploitability Score: 1

VMScore: 392

Vector: AV:L/AC:M/Au:N/C:P/I:P/A:P

An insecure modification vulnerability in the /etc/passwd file was found in the container openshift/jenkins. An attacker with access to the container could use this flaw to modify /etc/passwd and escalate their privileges. This CVE is specific to the openshift/jenkins-slave-base-rhel7-containera as shipped in Openshift 4 and 3.11.

Vulnerable Product	Search on Vulmon	Subscribe to Product
redhat openshift 3.11
redhat openshift 4.0

Synopsis Moderate: OpenShift Container Platform 311 jenkins-slave-base-rhel7-container security update Type/Severity Security Advisory: Moderate Topic An update for jenkins-slave-base-rhel7-container is now available for Red Hat OpenShift Container Platform 311Red Hat Product Security has rated this upda ...

Synopsis Moderate: OpenShift Container Platform 4220 jenkins-slave-base-rhel7-container security update Type/Severity Security Advisory: Moderate Topic An update for jenkins-slave-base-rhel7-container is now available for Red Hat OpenShift Container Platform 42Red Hat Product Security has rated this upd ...

Synopsis Moderate: OpenShift Container Platform 433 jenkins-slave-base-rhel7-container security update Type/Severity Security Advisory: Moderate Topic An update for jenkins-slave-base-rhel7-container is now available for Red Hat OpenShift Container Platform 43Red Hat Product Security has rated this upda ...

CWE-266 https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-19351 https://access.redhat.com/errata/RHSA-2020:0803 https://nvd.nist.gov

CVE-2019-19351

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect