4 matches found
CVE-2025-57854
The CVE-2025-57854 issue affects OpenShift Update Service (OSUS) images where the /etc/passwd file is created with group-writable permissions during build. Under certain conditions, a non-root user who can run commands in an affected container could leverage membership in the root group to modify...
CVE-2025-57849
A container privilege escalation flaw was found in certain Fuse images. This issue stems from the /etc/passwd file being created with group-writable permissions during build time. In certain conditions, an attacker who can execute commands within an affected container, even as a non-root user, ca...
EUVD-2025-35622
A container privilege escalation flaw was found in certain AMQ Broker images. This issue stems from the /etc/passwd file being created with group-writable permissions during build time. In certain conditions, an attacker who can execute commands within an affected container, even as a non-root...
Medium: containerd
Issue Overview: A flaw was found in containerd. Access controls for the shim API socket verified that a connecting process had an effective UID of 0, but otherwise did not restrict access to the abstract Unix domain socket. This could allow malicious containers running in the same network namespa...