ECS Container has Elevated/Root Privileges

Tenacity Id

Risk Level

Categories

ecs-003

4

Last Updated:

April 21, 2022

The Amazon Elastic Container Service (ECS) container definition "privileged" parameter is set to true, elevating privileges on the host container instance. When the ECS ContainerDefinition "privileged" parameter is true the container is given elevated privileges on the host container instance which is similar to the root user. An attacker who gained control of this container would have elevated privileges to the host container instance. The ContainerDefinition privilege should be set to false. Note: This parameter is not supported for Windows containers or tasks using the Fargate launch type.