Open balhar-jakub opened 9 months ago
This issue has been automatically marked as stale because it has not had recent activity. It will be closed if no further activity occurs.
This issue has been automatically closed due to lack of activity. If you disagree, please comment on reason why and reopen the issue
Analysis
The containers actually created and used are used only for potential development. As such the risk is very limited.
Description
The Docker container requests the
NET_RAW
capability, either explicitly or by default, granting access to the host's network interfaces.Related To CWE-269 Broken Access Control Insecure Design 2020 CWE On the Cusp 2021 OWASP Top 10 2017 OWASP Top 10 PCI DSS 2018 2019 CWE Top 25 2020 CWE Top 25 3 Technical Risk Indicators
Domain SAST
Tool Coverity 2022.6.0
Run Coverity Sep 13, 2022, 10:29 AM
Severity H High
Affected: api-layer/docker/*/docker-compose.yml (all yml docker files)
Recommended fix: