Red Hat Fuse Container Priv Esc via Group-Writable /etc/passwd
CVE-2025-57849 Published on March 13, 2026

Fuse: privilege escalation via excessive /etc/passwd permissions
A container privilege escalation flaw was found in certain Fuse images. This issue stems from the /etc/passwd file being created with group-writable permissions during build time. In certain conditions, an attacker who can execute commands within an affected container, even as a non-root user, can leverage their membership in the root group to modify the /etc/passwd file. This could allow the attacker to add a new user with any arbitrary UID, including UID 0, leading to full root privileges within the container.

NVD

Vulnerability Analysis

CVE-2025-57849 can be exploited with local system access, and requires user privileges. This vulnerability is consided to have a high level of attack complexity. The potential impact of an exploit of this vulnerability is considered to be very high.

Attack Vector:
LOCAL
Attack Complexity:
HIGH
Privileges Required:
HIGH
User Interaction:
NONE
Scope:
UNCHANGED
Confidentiality Impact:
HIGH
Integrity Impact:
HIGH
Availability Impact:
HIGH

Timeline

Reported to Red Hat.

Made public. 199 days later.

Weakness Type

Incorrect Default Permissions

During installation, installed file permissions are set to allow anyone to modify those files.


Products Associated with CVE-2025-57849

Want to know whenever a new CVE is published for Red Hat Jboss Fuse? stack.watch will email you.

Red Hat Jboss Fuse
 

Affected Versions

Red Hat Fuse 7: Red Hat Fuse 7: Red Hat Fuse 7: Red Hat Fuse 7: Red Hat Fuse 7: Red Hat Fuse 7:

Exploit Probability

EPSS
0.01%
Percentile
0.56%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.