CVE-2022-4318

Опубликовано: 25 сент. 2023

Источник: debian

EPSS Низкий

Описание

A vulnerability was found in cri-o. This issue allows the addition of arbitrary lines into /etc/passwd by use of a specially crafted environment variable.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
cri-o	itp			package

EPSS

Процентиль: 12%

0.00042

Низкий

Связанные уязвимости

CVE-2022-4318

CVSS3: 7.8

ubuntu

больше 1 года назад

A vulnerability was found in cri-o. This issue allows the addition of arbitrary lines into /etc/passwd by use of a specially crafted environment variable.

CVE-2022-4318

CVSS3: 7.8

redhat

больше 2 лет назад

A vulnerability was found in cri-o. This issue allows the addition of arbitrary lines into /etc/passwd by use of a specially crafted environment variable.

CVE-2022-4318

CVSS3: 7.8

nvd

больше 1 года назад

A vulnerability was found in cri-o. This issue allows the addition of arbitrary lines into /etc/passwd by use of a specially crafted environment variable.

ROS-20240401-03

CVSS3: 7.8

redos

около 1 года назад

Уязвимость cri-o

GHSA-cm9x-c3rh-7rc4

CVSS3: 6.1

github

больше 2 лет назад

CRI-O vulnerable to /etc/passwd tampering resulting in Privilege Escalation

EPSS

Процентиль: 12%

0.00042

Низкий