Container Privilege Escalation Vulnerability in Web Terminal Images
CVE-2025-57853

6.4MEDIUM

Key Information:

Vendor: Red Hat
Status: Red Hat Web Terminal
Vendor: CVE Published:; 8 April 2026

What is CVE-2025-57853?

A privilege escalation vulnerability exists in certain Web Terminal images due to the improper creation of the /etc/passwd file with group-writable permissions during the build process. This flaw allows an attacker who has the ability to execute commands within the affected container to exploit their membership in the root group. As a result, they can modify the /etc/passwd file and potentially add a new user with any arbitrary UID, including UID 0, which grants full root access within the container environment.

References

https://access.redhat.com/security/cve/CVE-2025-57853

vdb-entryx_refsource_REDHAT

https://bugzilla.redhat.com/show_bug.cgi?id=2391106

issue-trackingx_refsource_REDHAT

CVSS V3.1

Score:

6.4

Severity:

MEDIUM

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

High

Privileges Required:

High

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 8, 2026
Vulnerability Reserved
Aug 21, 2025

Credit

Red Hat would like to thank Antony Di Scala and Michael Whale for reporting this issue.

CVE-2025-57853 Data

JSON