ByteOS Network

NVD Vulnerability Details :

CVE-2025-7195

Awaiting Analysis

Source-secalert@redhat.com

Published At-07 Aug, 2025 | 19:15

Updated At-24 Mar, 2026 | 15:16

Early versions of Operator-SDK provided an insecure method to allow operator containers to run in environments that used a random UID. Operator-SDK before 0.15.2 provided a script, user_setup, which modifies the permissions of the /etc/passwd file to 664 during build time. Developers who used Operator-SDK before 0.15.2 to scaffold their operator may still be impacted by this if the insecure user_setup script is still being used to build new container images. In affected images, the /etc/passwd file is created during build time with group-writable permissions and a group ownership of root (gid=0). An attacker who can execute commands within an affected container, even as a non-root user, may be able to leverage their membership in the root group to modify the /etc/passwd file. This could allow the attacker to add a new user with any arbitrary UID, including UID 0, leading to full root privileges within the container.

Date Added	Due Date	Vulnerability Name	Required Action
	N/A

Metrics

Type	Version	Base score	Base severity	Vector
Secondary	3.1	6.4	MEDIUM	CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H

Type: Secondary

Version: 3.1

Base score: 6.4

Base severity: MEDIUM

Vector:

CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H

Weaknesses

CWE ID	Type	Source
CWE-276	Secondary	secalert@redhat.com

CWE ID: CWE-276

Type: Secondary

Source: secalert@redhat.com

References

Hyperlink	Source	Resource
https://access.redhat.com/errata/RHEA-2025:23406	secalert@redhat.com	N/A
https://access.redhat.com/errata/RHEA-2025:23478	secalert@redhat.com	N/A
https://access.redhat.com/errata/RHEA-2026:0129	secalert@redhat.com	N/A
https://access.redhat.com/errata/RHSA-2025:19332	secalert@redhat.com	N/A
https://access.redhat.com/errata/RHSA-2025:19335	secalert@redhat.com	N/A
https://access.redhat.com/errata/RHSA-2025:19958	secalert@redhat.com	N/A
https://access.redhat.com/errata/RHSA-2025:19961	secalert@redhat.com	N/A
https://access.redhat.com/errata/RHSA-2025:21368	secalert@redhat.com	N/A
https://access.redhat.com/errata/RHSA-2025:21885	secalert@redhat.com	N/A
https://access.redhat.com/errata/RHSA-2025:22415	secalert@redhat.com	N/A
https://access.redhat.com/errata/RHSA-2025:22416	secalert@redhat.com	N/A
https://access.redhat.com/errata/RHSA-2025:22418	secalert@redhat.com	N/A
https://access.redhat.com/errata/RHSA-2025:22420	secalert@redhat.com	N/A
https://access.redhat.com/errata/RHSA-2025:22683	secalert@redhat.com	N/A
https://access.redhat.com/errata/RHSA-2025:22684	secalert@redhat.com	N/A
https://access.redhat.com/errata/RHSA-2025:23528	secalert@redhat.com	N/A
https://access.redhat.com/errata/RHSA-2025:23529	secalert@redhat.com	N/A
https://access.redhat.com/errata/RHSA-2025:23542	secalert@redhat.com	N/A
https://access.redhat.com/errata/RHSA-2026:0627	secalert@redhat.com	N/A
https://access.redhat.com/errata/RHSA-2026:0718	secalert@redhat.com	N/A
https://access.redhat.com/errata/RHSA-2026:0722	secalert@redhat.com	N/A
https://access.redhat.com/errata/RHSA-2026:0737	secalert@redhat.com	N/A
https://access.redhat.com/errata/RHSA-2026:2572	secalert@redhat.com	N/A
https://access.redhat.com/errata/RHSA-2026:5633	secalert@redhat.com	N/A
https://access.redhat.com/security/cve/CVE-2025-7195	secalert@redhat.com	N/A
https://bugzilla.redhat.com/show_bug.cgi?id=2376300	secalert@redhat.com	N/A