CVE-2019-14287
8.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
8.6 High
AI Score
Confidence
High
9 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:S/C:C/I:C/A:C
0.308 Low
EPSS
Percentile
96.9%
In Sudo before 1.8.28, an attacker with access to a Runas ALL sudoer account can bypass certain policy blacklists and session PAM modules, and can cause incorrect logging, by invoking sudo with a crafted user ID. For example, this allows bypass of !root configuration, and USER= logging, for a “sudo -u #$((0xffffffff))” command.
References
lists.opensuse.org/opensuse-security-announce/2019-10/msg00042.html
lists.opensuse.org/opensuse-security-announce/2019-10/msg00047.html
packetstormsecurity.com/files/154853/Slackware-Security-Advisory-sudo-Updates.html
www.openwall.com/lists/oss-security/2019/10/14/1
www.openwall.com/lists/oss-security/2019/10/24/1
www.openwall.com/lists/oss-security/2019/10/29/3
www.openwall.com/lists/oss-security/2021/09/14/2
access.redhat.com/errata/RHBA-2019:3248
access.redhat.com/errata/RHSA-2019:3197
access.redhat.com/errata/RHSA-2019:3204
access.redhat.com/errata/RHSA-2019:3205
access.redhat.com/errata/RHSA-2019:3209
access.redhat.com/errata/RHSA-2019:3219
access.redhat.com/errata/RHSA-2019:3278
access.redhat.com/errata/RHSA-2019:3694
access.redhat.com/errata/RHSA-2019:3754
access.redhat.com/errata/RHSA-2019:3755
access.redhat.com/errata/RHSA-2019:3895
access.redhat.com/errata/RHSA-2019:3916
access.redhat.com/errata/RHSA-2019:3941
access.redhat.com/errata/RHSA-2019:4191
access.redhat.com/errata/RHSA-2020:0388
lists.debian.org/debian-lts-announce/2019/10/msg00022.html
lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IP7SIOAVLSKJGMTIULX52VQUPTVSC43U/
lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NPLAM57TPJQGKQMNG6RHFBLACD6K356N/
lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TUVAOZBYUHZS56A5FQSCDVGXT7PW7FL2/
resources.whitesourcesoftware.com/blog-whitesource/new-vulnerability-in-sudo-cve-2019-14287
seclists.org/bugtraq/2019/Oct/20
seclists.org/bugtraq/2019/Oct/21
security.gentoo.org/glsa/202003-12
security.netapp.com/advisory/ntap-20191017-0003/
support.f5.com/csp/article/K53746212?utm_source=f5support&%3Butm_medium=RSS
support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbns03976en_us
usn.ubuntu.com/4154-1/
www.debian.org/security/2019/dsa-4543
www.openwall.com/lists/oss-security/2019/10/15/2
www.sudo.ws/alerts/minus_1_uid.html
Social References
More
Related
8.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
8.6 High
AI Score
Confidence
High
9 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:S/C:C/I:C/A:C
0.308 Low
EPSS
Percentile
96.9%