CVE-2022-4318

Опубликовано: 25 сент. 2023

Источник: debian

Описание

A vulnerability was found in cri-o. This issue allows the addition of arbitrary lines into /etc/passwd by use of a specially crafted environment variable.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
cri-o	itp			package

Связанные уязвимости

CVE-2022-4318

CVSS3: 7.8

ubuntu

больше 2 лет назад

A vulnerability was found in cri-o. This issue allows the addition of arbitrary lines into /etc/passwd by use of a specially crafted environment variable.

CVE-2022-4318

CVSS3: 7.8

redhat

около 3 лет назад

A vulnerability was found in cri-o. This issue allows the addition of arbitrary lines into /etc/passwd by use of a specially crafted environment variable.

CVE-2022-4318

CVSS3: 7.8

nvd

больше 2 лет назад

A vulnerability was found in cri-o. This issue allows the addition of arbitrary lines into /etc/passwd by use of a specially crafted environment variable.

CVE-2022-4318

CVSS3: 7.8

msrc

5 месяцев назад

Cri-o: /etc/passwd tampering privesc

GHSA-cm9x-c3rh-7rc4

CVSS3: 6.1

github

около 3 лет назад

CRI-O vulnerable to /etc/passwd tampering resulting in Privilege Escalation