In all android releases(Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, Exposing the hashed content in /etc/passwd may lead to security issue.
https://www.codeaurora.org/security-bulletin/2018/12/03/december-2018-code-aurora-security-bulletin