Lucene search
K

38 matches found

Tenable Nessus
Tenable Nessus
added 2024/05/11 12:0 a.m.42 views

RHEL 6 : sudo (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - sudo: by using ! character in the shadow file instead of a password hash can access to a run as all sudoe...

8.4AI score0.03295EPSS
Exploits3References8
Tenable Nessus
Tenable Nessus
added 2023/11/07 12:0 a.m.29 views

Rocky Linux 8 : sudo (RLSA-2021:1723)

The remote Rocky Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2021:1723 advisory. - The sudoedit personality of Sudo before 1.9.5 may allow a local unprivileged user to perform arbitrary directory-existence tests by winning a sudoedit...

7.8CVSS6.9AI score0.01066EPSS
Exploits2References6
OpenVAS
OpenVAS
added 2023/01/31 12:0 a.m.27 views

Huawei EulerOS: Security Advisory for sudo (EulerOS-SA-2023-1296)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS6AI score0.01066EPSS
Exploits2References2
Tenable Nessus
Tenable Nessus
added 2022/11/15 12:0 a.m.31 views

NewStart CGSL MAIN 6.02 : sudo Vulnerability (NS-SA-2022-0100)

The remote NewStart CGSL host, running version MAIN 6.02, has sudo packages installed that are affected by a vulnerability: - selinuxeditcopytfiles in sudoedit in Sudo before 1.9.5 allows a local unprivileged user to gain file ownership and escalate privileges by replacing a temporary file with a...

7.8CVSS7.3AI score0.01066EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2022/02/09 12:0 a.m.30 views

AlmaLinux 8 : sudo (ALSA-2021:1723)

The remote AlmaLinux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the ALSA-2021:1723 advisory. - The sudoedit personality of Sudo before 1.9.5 may allow a local unprivileged user to perform arbitrary directory-existence tests by winning a sudoedit.c...

7.8CVSS6.9AI score0.01066EPSS
Exploits2References3
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.21 views

Mageia: Security Advisory (MGASA-2021-0042)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS6AI score0.01066EPSS
Exploits2References5
OSV
OSV
added 2021/07/07 9:30 a.m.8 views

CLSA-2021-1625650209 Fix of CVE: CVE-2021-23240

sudo-1.8.6p3-CVE-2021-23240-2.patch: fixed issue with credentials management in sudoedit - sudo-1.8.6p3-CVE-2021-23240-3.patch: fixed issue with origin file removal in sesh...

7.8CVSS7.1AI score0.01066EPSS
Exploits1References1
Rosalinux
Rosalinux
added 2021/07/02 6:12 p.m.35 views

Advisory ROSA-SA-2021-1980

Software: sudo 1.8.23 OS: Cobalt 7.9 CVE-ID: CVE-2021-23239 CVE-Crit: LOW CVE-DESC: The sudoedit personality in sudo before 1.9.5 can allow a local unprivileged user to perform arbitrary directory existence tests by winning the sudoedit.c race condition when replacing a user-controlled directory...

7.8CVSS6.5AI score0.01066EPSS
Exploits2
Tenable Nessus
Tenable Nessus
added 2021/05/26 12:0 a.m.29 views

Oracle Linux 8 : sudo (ELSA-2021-1723)

The remote Oracle Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2021-1723 advisory. - CVE-2021-3156 Resolves: rhbz1917734 - CVE-2021-23239 sudo: possible directory existence test due to race condition in sudoedit Resolves: rhzb1916434 ...

7.8CVSS7.2AI score0.99295EPSS
Exploits83References3
Oracle linux
Oracle linux
added 2021/05/25 12:0 a.m.53 views

sudo security and bug fix update

1.8.29-7 - RHEL 8.4 ERRATUM - CVE-2021-3156 Resolves: rhbz1917734 - CVE-2021-23239 sudo: possible directory existence test due to race condition in sudoedit Resolves: rhzb1916434 - CVE-2021-23240 sudo: symbolic link attack in SELinux-enabled sudoedit Resolves: rhbz1917038 - updated upstream url...

7.8CVSS1.2AI score0.99295EPSS
Exploits83
Tenable Nessus
Tenable Nessus
added 2021/05/19 12:0 a.m.39 views

CentOS 8 : sudo (CESA-2021:1723)

The remote CentOS Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the CESA-2021:1723 advisory. - sudo: possible directory existence test due to race condition in sudoedit CVE-2021-23239 - sudo: symbolic link attack in SELinux-enabled sudoedit...

7.8CVSS6.5AI score0.01066EPSS
Exploits2References3
RedHat Linux
RedHat Linux
added 2021/05/18 1:45 p.m.42 views

Low: Red Hat Security Advisory: sudo security and bug fix update

An update for sudo is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE...

7.8CVSS6.7AI score0.01066EPSS
Exploits2References5
AlmaLinux
AlmaLinux
added 2021/05/18 5:55 a.m.40 views

Low: sudo security and bug fix update

The sudo packages contain the sudo utility which allows system administrators to provide certain users with the permission to execute privileged commands, which are used for system management purposes, without having to log in as root. Security Fixes: sudo: symbolic link attack in SELinux-enabled...

4.4CVSS2.8AI score0.01066EPSS
Exploits2References2
Rockylinux
Rockylinux
added 2021/05/18 5:55 a.m.32 views

sudo security and bug fix update

An update is available for sudo. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The sudo packages contain the sudo utility which allows system administrators to...

7.8CVSS6.5AI score0.01066EPSS
Exploits2
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.22 views

SUSE: Security Advisory (SUSE-SU-2021:0227-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.3AI score0.99295EPSS
Exploits83References9
OpenVAS
OpenVAS
added 2021/04/16 12:0 a.m.24 views

openSUSE: Security Advisory for sudo (openSUSE-SU-2021:0169-1)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.8CVSS7.4AI score0.99295EPSS
Exploits83References4
Tenable Nessus
Tenable Nessus
added 2021/04/15 12:0 a.m.36 views

EulerOS Virtualization 2.9.1 : sudo (EulerOS-SA-2021-1726)

According to the versions of the sudo package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - A race condition vulnerability was found in the temporary file handling of sudoedit's SELinux RBAC support. On systems where SELinux...

7.8CVSS6.6AI score0.01066EPSS
Exploits2References3
Tenable Nessus
Tenable Nessus
added 2021/04/15 12:0 a.m.34 views

EulerOS Virtualization 2.9.0 : sudo (EulerOS-SA-2021-1757)

According to the versions of the sudo package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - A race condition vulnerability was found in the temporary file handling of sudoedit's SELinux RBAC support. On systems where SELinux...

7.8CVSS6.6AI score0.01066EPSS
Exploits2References3
OpenVAS
OpenVAS
added 2021/04/13 12:0 a.m.20 views

Huawei EulerOS: Security Advisory for sudo (EulerOS-SA-2021-1757)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS5.8AI score0.01066EPSS
Exploits2References2
OpenVAS
OpenVAS
added 2021/03/05 12:0 a.m.19 views

Huawei EulerOS: Security Advisory for sudo (EulerOS-SA-2021-1520)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.3AI score0.99295EPSS
Exploits83References4
Rows per page
Query Builder