CVE-2021-3156

🗓️ 26 Jan 2021 00:00:00Reported by mitreType

cve🔗 web.nvd.nist.gov📰️ 15 Media mentions👁 4453 Views

Sudo 1.9.5p2 off-by-one error heap-based buffer overflow CVE-2021-315

Reporter	Title	Published	Views	Family All 459
Gitee	Exploit for Race Condition in Canonical Ubuntu_Linux	10 Nov 202110:33	–	gitee
Gitee	Exploit for Off-by-one Error in Sudo_Project Sudo	14 Apr 202123:08	–	gitee
Gitee	Exploit for Off-by-one Error in Sudo_Project Sudo	12 Oct 202120:51	–	gitee
Gitee	Exploit for Off-by-one Error in Sudo_Project Sudo	23 Nov 202116:28	–	gitee
Gitee	Exploit for Off-by-one Error in Sudo_Project Sudo	14 Mar 202122:44	–	gitee
Gitee	Exploit for Off-by-one Error in Sudo_Project Sudo	27 Sep 202114:38	–	gitee
Gitee	Exploit for Off-by-one Error in Sudo_Project Sudo	11 Dec 202100:59	–	gitee
Gitee	Exploit for Off-by-one Error in Sudo_Project Sudo	27 Aug 202116:41	–	gitee
Gitee	Exploit for Off-by-one Error in Sudo_Project Sudo	1 Feb 202121:54	–	gitee
Gitee	Exploit for Off-by-one Error in Sudo_Project Sudo	18 Mar 202116:49	–	gitee

NVD

Node

sudo_project sudoRange1.8.2–1.8.32

sudo_project sudoRange1.9.0–1.9.5

sudo_project sudoMatch1.9.5-

sudo_project sudoMatch1.9.5patch1

Node

fedoraproject fedoraMatch32

fedoraproject fedoraMatch33

Node

debian debian_linuxMatch9.0

debian debian_linuxMatch10.0

Node

netapp active_iq_unified_managerMatch-vmware_vsphere

netapp cloud_backupMatch-

netapp hci_management_nodeMatch-

netapp oncommand_unified_manager_core_packageMatch-

netapp ontap_select_deploy_administration_utilityMatch-

netapp ontap_toolsMatch9vmware_vsphere

netapp solidfireMatch-

Node

mcafee web_gatewayMatch8.2.17

mcafee web_gatewayMatch9.2.8

mcafee web_gatewayMatch10.0.4

Node

synology diskstation_manager_unified_controllerMatch3.0

synology diskstation_managerMatch6.2

Node

synology skynas_firmwareMatch-

AND

synology skynasMatch-

Node

synology vs960hd_firmwareMatch-

AND

synology vs960hdMatch-

Node

beyondtrust privilege_management_for_macRange<21.1.1

beyondtrust privilege_management_for_unix/linuxRange<10.3.2-10basic

Node

oracle micros_compact_workstation_3_firmwareMatch310

AND

oracle micros_compact_workstation_3Match-

Node

oracle micros_es400_firmwareRange400–410

AND

oracle micros_es400Match-

Node

oracle micros_kitchen_display_system_firmwareMatch210

AND

oracle micros_kitchen_display_systemMatch-

Node

oracle micros_workstation_5a_firmwareMatch5a

AND

oracle micros_workstation_5aMatch-

Node

oracle micros_workstation_6_firmwareRange610–655

AND

oracle micros_workstation_6Match-

Node

oracle communications_performance_intelligence_centerRange10.3.0.0.0–10.3.0.2.1

oracle communications_performance_intelligence_centerRange10.4.0.1.0–10.4.0.3.1

oracle tekelec_platform_distributionRange7.4.0–7.7.1

Source	Link
kc	www.kc.mcafee.com/corporate/index
packetstormsecurity	www.packetstormsecurity.com/files/176932/glibc-syslog-Heap-Based-Buffer-Overflow.html
oracle	www.oracle.com/security-alerts/cpuoct2021.html
openwall	www.openwall.com/lists/oss-security/2021/01/27/1
oracle	www.oracle.com/security-alerts/cpuapr2022.html
sudo	www.sudo.ws/stable.html
security	www.security.netapp.com/advisory/ntap-20210128-0001/
packetstormsecurity	www.packetstormsecurity.com/files/161230/Sudo-Buffer-Overflow-Privilege-Escalation.html
synology	www.synology.com/security/advisory/Synology_SA_21_02
beyondtrust	www.beyondtrust.com/blog/entry/security-advisory-privilege-management-for-unix-linux-pmul-basic-and-privilege-management-for-mac-pmm-affected-by-sudo-vulnerability

10 Nov 2025 14:41Current

8.3High risk

Vulners AI Score8.3

CVSS 27.2

CVSS 3.17.8

EPSS0.92579

SSVC