2391105 – (CVE-2025-57852) CVE-2025-57852 openshift-ai: privilege escalation via excessive /etc/passwd permissions

Bug 2391105 (CVE-2025-57852) - CVE-2025-57852 openshift-ai: privilege escalation via excessive /etc/passwd permissions

Summary: CVE-2025-57852 openshift-ai: privilege escalation via excessive /etc/passwd p...

Keywords:
Status:	NEW
Alias:	CVE-2025-57852
Deadline:	2025-09-30
Product:	Security Response
Classification:	Other
Component:	vulnerability
Sub Component:
Version:	unspecified
Hardware:	All
OS:	Linux
Priority:	low
Severity:	low
Target Milestone:	---
Assignee:	Product Security DevOps Team
QA Contact:
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2025-08-26 18:48 UTC by OSIDB Bzimport
Modified:	2025-09-30 15:46 UTC (History)
CC List:	7 users (show)
Fixed In Version:
Clone Of:
Environment:
Last Closed:
Embargoed:

Attachments	(Terms of Use)

Description OSIDB Bzimport 2025-08-26 18:48:02 UTC

The /etc/passwd file is created during build time with group-writable permissions. In certain conditions, an attacker who can execute commands within an affected container, even as a non-root user, may be able to leverage their membership in the root group to modify the /etc/passwd file. This could allow the attacker to add a new user with any arbitrary UID, including UID 0, leading to full root privileges within the container.

Note You need to log in before you can comment on or make changes to this bug.