CVE-2022-4318

Опубликовано: 25 сент. 2023

Источник: ubuntu

Приоритет: medium

EPSS Низкий

CVSS3: 7.8

Описание

A vulnerability was found in cri-o. This issue allows the addition of arbitrary lines into /etc/passwd by use of a specially crafted environment variable.

Релиз	Статус	Примечание
devel	DNE
esm-infra/focal	DNE
focal	DNE
jammy	DNE
noble	DNE
oracular	DNE
upstream	needs-triage

Показывать по

Ссылки на источники

https://www.cve.org/CVERecord?id=CVE-2022-4318

EPSS

Процентиль: 13%

0.00042

Низкий

7.8 High

CVSS3

Связанные уязвимости

CVE-2022-4318

CVSS3: 7.8

redhat

около 3 лет назад

A vulnerability was found in cri-o. This issue allows the addition of arbitrary lines into /etc/passwd by use of a specially crafted environment variable.

CVE-2022-4318

CVSS3: 7.8

nvd

больше 2 лет назад

A vulnerability was found in cri-o. This issue allows the addition of arbitrary lines into /etc/passwd by use of a specially crafted environment variable.

CVE-2022-4318

CVSS3: 7.8

msrc

5 месяцев назад

Cri-o: /etc/passwd tampering privesc

CVE-2022-4318

CVSS3: 7.8

debian

больше 2 лет назад

A vulnerability was found in cri-o. This issue allows the addition of ...

GHSA-cm9x-c3rh-7rc4

CVSS3: 6.1

github

около 3 лет назад

CRI-O vulnerable to /etc/passwd tampering resulting in Privilege Escalation

EPSS

Процентиль: 13%

0.00042

Низкий

7.8 High

CVSS3

CVE-2022-4318

Описание

Пакет cri-o

Ссылки на источники

Связанные уязвимости