First published: Wed Feb 24 2021(Updated: )
An insecure modification flaw in the /etc/passwd file was found in the openjdk-1.8 and openjdk-11 containers. This flaw allows an attacker with access to the container to modify the /etc/passwd and escalate their privileges. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability.
Credit: secalert@redhat.com
Affected Software | Affected Version | How to fix |
---|---|---|
redhat/openjdk | <1.8 | 1.8 |
Oracle OpenJDK | =1.8.0 | |
Oracle OpenJDK | =11 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID is CVE-2021-20264.
The severity of CVE-2021-20264 is high with a score of 7.8.
The openjdk-1.8 and openjdk-11 containers are affected by CVE-2021-20264.
An attacker with access to the container can modify the /etc/passwd file and escalate their privileges.
Yes, you can refer to the official Red Hat security advisories for remediation steps: [RHSA-2021:0946](https://access.redhat.com/errata/RHSA-2021:0946) and [RHSA-2021:0945](https://access.redhat.com/errata/RHSA-2021:0945).