🚀 Join our AI Wargame at Black Hat Asia and our Workshop + Wargame at NDC Sydney .

Root In Container

Switching to the root user introduces specific security risks if an attacker gains access to the container. To address this, revert to a non-privileged user after executing the necessary commands as root.

Remediation

Switch back to low privilege user after running commands as 'root'.

Metadata

  • Severity: high
  • Slug: root-in-container

CWEs

  • 269: Improper Privilege Management

OWASP

  • A04:2021: Insecure Design

Available Labs

Open Container labs in SecDim Play for this vulnerability.

Try it yourself

Find, Hack and Fix Your First Vulnerability

Reading about security bugs is one thing — fixing one is how the skill sticks. Play a free challenge from the wargame, no setup required.