CNNVD-202508-640 Information

CNNVD ID

CNNVD-202508-640

Related CVE

CVE-2025-7195

• CNNVD Published: 2025-08-07

Description (Chinese)

Red Hat File Integrity Operator是美国红帽（Red Hat）公司的一个文件完整性检测软件。 Red Hat File Integrity Operator 0.15.2之前版本存在安全漏洞，该漏洞源于user_setup脚本修改/etc/passwd文件权限不当，可能导致容器内权限提升。

Description (English)

Red Hat File Information Operation is a document integrity test software for Red Hat. There is a security loophole in the pre-Red Fat File Industry 0.15.2 version, which stems from the inappropriate /etc/passwd file permissions of the user setup script, which may lead to an increase in insider privileges.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

红帽

Published

2025-08-07

Last Modified

2026-02-24

References

https://access.redhat.com/security/cve/CVE-2025-7195 https://bugzilla.redhat.com/show_bug.cgi?id=2376300 https://access.redhat.com/security/cve/cve-2025-7195

Patch

https://access.redhat.com/security/cve/CVE-2025-7195