Lateral movement

Amazon ECS container runs as privileged

Platform(s)
Compliance Frameworks
  • AWS Foundational Security Best Practices Controls
    • ,
  • Mitre ATT&CK

Description

Amazon Elastic Container - ECS is a highly scalable, fast container management service that makes running, stopping, and managing containers on a cluster simple. A task definition defines your containers, which you use to run individual tasks or tasks within a service. It was detected that the ECS task definition {AwsEcsTaskDefinition} has 'privileged' parameter set to 'true' in container definition {AwsEcsTaskDefinition.ContainerDefinitions}. When the 'privileged' container parameter is set to 'true', the container is given elevated privileges on the host container instance (similar to the root user).
Need help?

Get a free Security Risk Assessment. Start today

Demo the Orca Platform

In just 10 minutes, you’ll see how Orca Security can revolutionize your cloud security strategy. Watch a recorded demo from a cloud security expert now.

Get a Demo