EUVD-2025-208625CVSS Vector
CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H
Lifecycle Timeline
3Description
A container privilege escalation flaw was found in certain Multi-Cloud Object Gateway Core images. This issue stems from the /etc/passwd file being created with group-writable permissions during build time. In certain conditions, an attacker who can execute commands within an affected container, even as a non-root user, can leverage their membership in the root group to modify the /etc/passwd file. This could allow the attacker to add a new user with any arbitrary UID, including UID 0, leading to full root privileges within the container
Analysis
Medium severity vulnerability in systemd. A container privilege escalation flaw was found in certain Multi-Cloud Object Gateway Core images. This issue stems from the /etc/passwd file being created with group-writable permissions during build time. In certain conditions, an attacker who can execute commands within an affected container, even as a non-root user, can leverage their membership in the root group to modify the /etc/passwd f...
Technical Context
Vulnerability Type: Incorrect Default Permissions (CWE-276)
CVSS 3.1: 6.4/10.0 — Attack Vector: Local | Complexity: High | Privileges Required: High | User Interaction: None
Attack Techniques: Privilege Escalation
Source: redhat
Affected Products
Product: systemd
Remediation
Monitor redhat for patches and updates. Reference: https://access.redhat.com/security/cve/CVE-2025-8766
Priority Score
Vendor Status
Share
External POC / Exploit Code
Leaving vuln.today