CVE-2025-8766
MediumCVSS 6.4Exploitation Probability (EPSS)
Low risk6th percentile - higher than 6% of all known CVEs
Summary
A container privilege escalation vulnerability was found in Multi-Cloud Object Gateway Core images. The issue is caused by the /etc/passwd file being created with group-writable permissions during build time. An attacker with command execution access inside the container, even as a non-root user, can exploit membership in the root group to modify /etc/passwd and add a user with arbitrary UID, including 0, leading to full root privileges.
Risk Assessment
The risk is that an attacker with limited command execution access can gain full root control over the container, potentially breaking container isolation and affecting other resources in the environment.
Recommendation
Immediately update Multi-Cloud Object Gateway Core images to a version where the /etc/passwd file permissions are fixed. Additionally, restrict command execution capabilities for non-privileged users within containers as a security measure.
Original NVD description (English source)
A container privilege escalation flaw was found in certain Multi-Cloud Object Gateway Core images. This issue stems from the /etc/passwd file being created with group-writable permissions during build time. In certain conditions, an attacker who can execute commands within an affected container, even as a non-root user, can leverage their membership in the root group to modify the /etc/passwd file. This could allow the attacker to add a new user with any arbitrary UID, including UID 0, leading to full root privileges within the container

