{"id":"CVE-2019-19353","details":"An insecure modification vulnerability in the /etc/passwd file was found in the operator-framework/hive as shipped in Red Hat Openshift 4. An attacker with access to the container could use this flaw to modify /etc/passwd and escalate their privileges.","modified":"2026-02-15T07:49:45.029913Z","published":"2021-03-24T17:15:12.743Z","references":[{"type":"ADVISORY","url":"https://access.redhat.com/articles/4859371"},{"type":"ADVISORY","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1791534"},{"type":"ADVISORY","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1793279"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1791534"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1793279"},{"type":"EVIDENCE","url":"https://bugzilla.redhat.com/show_bug.cgi?id=1791534"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/xtermjs/xterm.js","events":[{"introduced":"0"},{"last_affected":"6211dcd923f0d1f062ede56b79c88593604d7e44"}]}],"versions":["0.10","0.11","0.12","0.13","0.14","0.15","0.16","0.17","0.18","0.19","0.20","0.21","0.22","0.23","0.24","0.25","0.26","0.27","0.29","0.3","0.30","0.31","0.32","0.33","0.4","0.5","0.6","0.7","0.8","0.9","0.9.1","0.9.2","0.9.3","1.0.0","1.1.0","1.1.1","1.1.2","1.1.3","2.0.0","2.0.1","2.1.0","2.2.0","2.2.1","2.2.2","2.2.3","2.3.0","2.3.1","2.3.2","2.4.0","2.5.0","2.6.0","2.7.0","2.8.0","2.8.1","2.9.0","2.9.1","2.9.2","3.0.0","3.1.0","3.10.0","3.11.0","3.12.0","3.13.0","3.14.0","3.2.0","3.3.0","3.4.0","3.5.0","3.6.0","3.7.0","3.8.0","3.9.0","4.0.0"],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2019-19353.json"}}],"schema_version":"1.7.3","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H"}]}