CVE-2025-57852

A container privilege escalation flaw was found in KServe ModelMesh container images. This issue stems from the /etc/passwd file being created with group-writable permissions during build time. In certain conditions, an attacker who can execute commands within an affected container, even as a non-root user, can leverage their membership in the root group to modify the /etc/passwd file. This could allow the attacker to add a new user with any arbitrary UID, including UID 0, leading to full root privileges within the container.

CVSS v3 5.2 MEDIUM

5.2^/10

CVSS v3 : MEDIUM

V3 Legend

Vector :

Exploitability : 0.5 / Impact : 4.7

Attack Vector LOCAL

Attack Complexity HIGH

Privileges Required HIGH

User Interaction NONE

Confidentiality Impact LOW

Integrity Impact HIGH

Availability Impact LOW

Scope UNCHANGED

References

Link	Resource
https://access.redhat.com/errata/RHSA-2025:16981
https://access.redhat.com/errata/RHSA-2025:16982
https://access.redhat.com/errata/RHSA-2025:16983
https://access.redhat.com/errata/RHSA-2025:16984
https://access.redhat.com/errata/RHSA-2025:17501
https://access.redhat.com/security/cve/CVE-2025-57852
https://bugzilla.redhat.com/show_bug.cgi?id=2391105

Configurations

No configuration.

History

07 Nov 2025, 01:15

Type	Values Removed	Values Added
References		() https://access.redhat.com/errata/RHSA-2025:17501 -

Information

Published : 2025-09-30 15:15

Updated : 2025-11-07 01:15

NVD link : CVE-2025-57852

Mitre link : CVE-2025-57852

CVE.ORG link : CVE-2025-57852

JSON object : View

Products Affected

No product.

CWE

CWE-276

Incorrect Default Permissions

5.2 /10