CVE-2020-1742

HIGH

nmstate/kubernetes-nmstate-handler < v2.3.0-30 - Privilege Escalation

Title source: llm
STIX 2.1

Description

An insecure modification vulnerability flaw was found in containers using nmstate/kubernetes-nmstate-handler. An attacker with access to the container could use this flaw to modify /etc/passwd and escalate their privileges. Versions before kubernetes-nmstate-handler-container-v2.3.0-30 are affected.

References (1)

Core 1
Core References
Exploit, Issue Tracking, Third Party Advisory x_refsource_misc
https://bugzilla.redhat.com/show_bug.cgi?id=1803608

Scores

CVSS v3 7.0
EPSS 0.0004
EPSS Percentile 11.9%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

CWE
CWE-266 CWE-732
Status published
Products (3)
nmstate/kubernetes-nmstate < 2.3.0
nmstate/kubernetes-nmstate 0Go
redhat/openshift_virtualization 2
Published Jun 07, 2021
Tracked Since Feb 18, 2026