CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

EUVD•added 2026/04/08 3:31 p.m.•1 views

EUVD-2025-209298

A container privilege escalation flaw was found in certain Ansible Automation Platform images. This issue arises from the /etc/passwd file being created with group-writable permissions during the build process. In certain conditions, an attacker who can execute commands within an affected...

6.4CVSS6.1AI score0.00003EPSS

NVD•added 2026/04/08 2:16 p.m.•3 views

CVE-2025-57853

6.4CVSS0.00003EPSS

NVD•added 2026/04/08 2:16 p.m.•0 views

CVE-2025-57847

6.4CVSS0.00003EPSS

Cvelist•added 2026/04/08 1:55 p.m.•17 views

CVE-2025-58713 Rhpam: privilege escalation via excessive /etc/passwd permissions

A container privilege escalation flaw was found in certain Red Hat Process Automation Manager images. This issue stems from the /etc/passwd file being created with group-writable permissions during build time. In certain conditions, an attacker who can execute commands within an affected containe...

6.4CVSS0.00004EPSS

CVE•added 2026/04/08 1:55 p.m.•6 views

CVE-2025-58713

Red Hat Process Automation Manager images are affected by CVE-2025-58713 due to /etc/passwd being created with group-writable permissions during build. An attacker who can execute commands in the affected container (even as non-root) could leverage their root-group membership to modify /etc/passw...

6.4CVSS6.1AI score0.00004EPSS

Exploits0References2Affected Software1

ATTACKERKB•added 2026/04/08 1:55 p.m.•0 views

CVE-2025-57854

A container privilege escalation flaw was found in certain OpenShift Update Service OSUS images. This issue stems from the /etc/passwd file being created with group-writable permissions during build time. In certain conditions, an attacker who can execute commands within an affected container, ev...

CVE•added 2026/04/08 1:55 p.m.•7 views

CVE-2025-57854

The CVE-2025-57854 issue affects OpenShift Update Service (OSUS) images where the /etc/passwd file is created with group-writable permissions during build. Under certain conditions, a non-root user who can run commands in an affected container could leverage membership in the root group to modify...

Exploits0References2Affected Software1

RedhatCVE•added 2026/04/08 1:55 p.m.•2 views

CVE-2025-57851

A container privilege escalation flaw was found in certain Multicluster Engine for Kubernetes images. This issue stems from the /etc/passwd file being created with group-writable permissions during build time. In certain conditions, an attacker who can execute commands within an affected containe...

6.7CVSS6.1AI score0.00008EPSS

ATTACKERKB•added 2026/04/08 1:55 p.m.•1 views

CVE-2025-57851

6.4CVSS6.1AI score0.00008EPSS

Vulnrichment•added 2026/04/08 1:55 p.m.•1 views

CVE-2025-57851 Mce: privilege escalation via excessive /etc/passwd permissions

6.4CVSS6.1AI score0.00008EPSS

RedhatCVE•added 2026/04/08 1:49 p.m.•1 views

CVE-2025-57854

Snyk•added 2026/04/08 1:47 p.m.•2 views

Incorrect Default Permissions

Amendment This was deemed not a vulnerability. Overview ansible is a simple IT automation system. Affected versions of this package are vulnerable to Incorrect Default Permissions via excessive group-writable permissions on the /etc/passwd file during the build process. An attacker can gain full...

7.1CVSS6AI score0.00003EPSS

Positive Technologies•added 2026/04/08 12:0 a.m.•1 views

PT-2026-31309

6.4CVSS6.1AI score0.00003EPSS

Exploits0References4

Positive Technologies•added 2026/04/08 12:0 a.m.•0 views

PT-2026-31312

Positive Technologies•added 2026/04/08 12:0 a.m.•1 views

Exploits0References4

PT-2026-31310

6.4CVSS6.1AI score0.00008EPSS

Exploits0References4

EUVD•added 2026/03/13 9:31 p.m.•0 views

EUVD-2025-208625

A container privilege escalation flaw was found in certain Multi-Cloud Object Gateway Core images. This issue stems from the /etc/passwd file being created with group-writable permissions during build time. In certain conditions, an attacker who can execute commands within an affected container,...

6.4CVSS5.9AI score0.00004EPSS

CVE•added 2026/03/13 3:8 a.m.•8 views

CVE-2025-57849

CVE-2025-57849 describes a container privilege escalation in certain Fuse images caused by the /etc/passwd file being created with group-writable permissions during build time. In affected containers, a non-root user who can run commands could use root-group membership to modify /etc/passwd, enab...

6.4CVSS6AI score0.00007EPSS

Exploits0References2Affected Software1

Vulnrichment•added 2026/03/13 3:8 a.m.•2 views

CVE-2025-57849 Fuse: privilege escalation via excessive /etc/passwd permissions

A container privilege escalation flaw was found in certain Fuse images. This issue stems from the /etc/passwd file being created with group-writable permissions during build time. In certain conditions, an attacker who can execute commands within an affected container, even as a non-root user, ca...

6.4CVSS6AI score0.00007EPSS

RedhatCVE•added 2026/03/13 3:3 a.m.•4 views

CVE-2025-57849

6.4CVSS5.9AI score0.00007EPSS