Cri-o: /etc/passwd tampering privesc
CVE-2022-4318

7.8HIGH

Key Information:

Vendor: Red Hat
Status: Red Hat Openshift Container Platform 4.11; Red Hat Openshift Container Platform 4.12; Red Hat Enterprise Linux 9
Vendor: CVE Published:; 25 September 2023

Summary

A vulnerability in CRI-O allows attackers to insert arbitrary lines into the /etc/passwd file by leveraging specially crafted environment variables. This can lead to unauthorized access and potential elevation of privileges in the system.

Affected Version(s)

Red Hat OpenShift Container Platform 4.11 0:1.24.4-10.rhaos4.11.git1ed5ac5.el8

Red Hat OpenShift Container Platform 4.12 0:1.25.2-9.rhaos4.12.git0a083f9.el9

References

https://access.redhat.com/errata/RHSA-2023:1033

vendor-advisoryx_refsource_REDHAT

https://access.redhat.com/errata/RHSA-2023:1503

vendor-advisoryx_refsource_REDHAT

https://access.redhat.com/security/cve/CVE-2022-4318

vdb-entryx_refsource_REDHAT

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Sep 25, 2023
Vulnerability Reserved
Dec 6, 2022

Collectors

NVD DatabaseMitre Database

Credit

Red Hat would like to thank Burt Holzman (Fermilab) for reporting this issue.