Arbitrary Line Addition Vulnerability in cri-o via Specially Crafted Environment Variable

Arbitrary Line Addition Vulnerability in cri-o via Specially Crafted Environment Variable

CVE-2022-4318 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

A vulnerability was found in cri-o. This issue allows the addition of arbitrary lines into /etc/passwd by use of a specially crafted environment variable.

Learn more about our Web Application Penetration Testing UK.