CVE-2025-57849 MEDIUM

CVE-2025-57849: Fuse: privilege escalation via excessive /etc/passwd permissions

Vendor Red Hat

Product Red Hat Fuse 7

Weakness CWE-276

Published March 13, 2026

Last update March 13, 2026

View on NVD All CVEs

CVSS base score

6.4/10

Attack vector Local

Attack complexity High

Privileges required High

User interaction None

Confidentiality High

Integrity High

CVSS vector

CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H

What the vulnerability does

01Description

A container privilege escalation flaw was found in certain Fuse images. This issue stems from the /etc/passwd file being created with group-writable permissions during build time. In certain conditions, an attacker who can execute commands within an affected container, even as a non-root user, can leverage their membership in the root group to modify the /etc/passwd file. This could allow the attacker to add a new user with any arbitrary UID, including UID 0, leading to full root privileges within the container.

Key dates

02Disclosure timeline

March 13, 2026 CVE published

March 13, 2026 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2025-57849 CWE — Common Weakness Enumeration https://cwe.mitre.org/data/definitions/276.html

Related vulnerabilities

Identifiers

CVE CVE-2025-57849

CWE CWE-276

CVSS 6.4 / MEDIUM

Affected versions

Vendor Red Hat

Product Red Hat Fuse 7

Affected All versions

Vendor Red Hat

Product Red Hat Fuse 7

Affected All versions

Vendor Red Hat

Product Red Hat Fuse 7

Affected All versions

Vendor Red Hat

Product Red Hat Fuse 7

Affected All versions

Vendor Red Hat

Product Red Hat Fuse 7

Affected All versions

Vendor Red Hat

Product Red Hat Fuse 7

Affected All versions

CVE-2025-57849: Fuse: privilege escalation via excessive /etc/passwd permissions

01Description

02Disclosure timeline

03References

04Related CVE