Lucene search
K

142 matches found

Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.7 views

MiracleLinux 7 : sudo-1.8.23-10.el7.3 (AXSA:2023-4846:02)

The remote MiracleLinux 7 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2023-4846:02 advisory. sudo: arbitrary file write with privileges of the RunAs user CVE-2023-22809 Tenable has extracted the preceding description block directly from the...

7.8CVSS8.1AI score0.55367EPSS
Exploits20References2
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.7 views

MiracleLinux 9 : sudo-1.9.5p2-7.el9.1 (AXSA:2023-4872:03)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-4872:03 advisory. sudo: arbitrary file write with privileges of the RunAs user CVE-2023-22809 Tenable has extracted the preceding description block directly from the...

7.8CVSS8.1AI score0.55367EPSS
Exploits20References2
GithubExploit
GithubExploit
added 2025/07/30 9:48 a.m.215 views

Exploit for Improper Privilege Management in Sudo_Project Sudo

CVE-2023-22809-automated-python-exploits automatically exploit...

7.8CVSS9.2AI score0.55367EPSS
Exploits20
Tenable Nessus
Tenable Nessus
added 2025/06/16 12:0 a.m.6 views

TencentOS Server 2: sudo (TSSA-2023:0133)

The version of Tencent Linux installed on the remote TencentOS Server 2 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2023:0133 advisory. Package updates are available for TencentOS Server 2 that fix the following vulnerabilities:...

7.8CVSS8AI score0.55367EPSS
Exploits20References2
Tenable Nessus
Tenable Nessus
added 2025/06/16 12:0 a.m.7 views

TencentOS Server 3: sudo (TSSA-2023:0015)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2023:0015 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities:...

7.8CVSS8.1AI score0.55367EPSS
Exploits20References2
IBM Security Bulletins
IBM Security Bulletins
added 2025/05/27 10:53 a.m.11 views

Security Bulletin: Vulnerability in SUDO affects IBM Integrated Analytics System (Sailfish)[CVE-2023-22809, CVE-2023-28486, CVE-2023-28487, CVE-2023-42465]

Summary The SUDO package is used by IBM Integrated Analytics System . IBM Integrated Analytics System has addressed the applicable CVECVE-2023-22809, CVE-2023-28486, CVE-2023-28487, CVE-2023-42465 Vulnerability Details CVEID:CVE-2023-22809 DESCRIPTION: In Sudo before 1.9.12p2, the sudoedit aka -e...

7.8CVSS7AI score0.55367EPSS
Exploits21Affected Software1
Tenable Nessus
Tenable Nessus
added 2025/05/27 12:0 a.m.20 views

ABB M2M Gateway Improper Privilege Management in embedded Sudo (CVE-2023-22809)

In Sudo before 1.9.12p2, the sudoedit aka -e feature mishandles extra arguments passed in the user-provided environment variables SUDOEDITOR, VISUAL, and EDITOR, allowing a local attacker to append arbitrary entries to the list of files to process. This can lead to privilege escalation. Affected...

7.8CVSS7.1AI score0.55367EPSS
Exploits20References31
IBM Security Bulletins
IBM Security Bulletins
added 2025/05/19 4:26 a.m.20 views

Security Bulletin: Vulnerability in Sudo affects IBM Integrated Analytics System (Sailfish)[CVE-2023-22809, CVE-2023-28486, CVE-2023-28487, CVE-2023-42465].

Summary The Sudo package is used by IBM Integrated Analytics System . IBM Integrated Analytics System has addressed the applicable CVECVE-2023-22809, CVE-2023-28486, CVE-2023-28487, CVE-2023-42465. Vulnerability Details CVEID:CVE-2023-22809 DESCRIPTION: In Sudo before 1.9.12p2, the sudoedit aka -...

7.8CVSS7AI score0.55367EPSS
Exploits21Affected Software1
Tenable Nessus
Tenable Nessus
added 2025/05/14 12:0 a.m.9 views

Alibaba Cloud Linux 3 : 0010: sudo (ALINUX3-SA-2023:0010)

The remote Alibaba Cloud Linux 3 host has packages installed that are affected by a vulnerability as referenced in the ALINUX3-SA-2023:0010 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2023-22809: In Sudo before 1.9.12p2, the sudoed...

7.8CVSS8.1AI score0.55367EPSS
Exploits20References2
GithubExploit
GithubExploit
added 2024/08/28 2:22 p.m.389 views

Exploit for Improper Privilege Management in Sudo_Project Sudo

CVE-2023-22809 Exploiter Scripts Disclaimer This script is pr...

7.8CVSS8.2AI score0.55367EPSS
Exploits20
Rosalinux
Rosalinux
added 2024/04/11 7:39 a.m.42 views

Advisory ROSA-SA-2024-2396

Software: sudo 1.8.29 OS: ROSA Virtualization 2.1 packageevrstring: sudo-1.8.29-8.rv3.1 CVE-ID: CVE-2023-22809 BDU-ID: 2023-00210 CVE-Crit: MEDIUM. CVE-DESC.: A vulnerability in the sudoedit function of the Sudo system administration program is related to errors in the handling of additional...

7.8CVSS7.2AI score0.55367EPSS
Exploits20
Tenable Nessus
Tenable Nessus
added 2024/02/29 12:0 a.m.35 views

CentOS 9 : sudo-1.9.5p2-9.el9

The remote CentOS Linux 9 host has packages installed that are affected by a vulnerability as referenced in the sudo-1.9.5p2-9.el9 build changelog. - arbitrary file write with privileges of the RunAs user CVE-2023-22809 Note that Nessus has not tested for this issue but has instead relied only on...

7.8CVSS8.2AI score0.55367EPSS
Exploits20References2
Tenable Nessus
Tenable Nessus
added 2024/02/08 12:0 a.m.19 views

CentOS 8 : sudo (CESA-2023:0284)

The remote CentOS Linux 8 host has a package installed that is affected by a vulnerability as referenced in the CESA-2023:0284 advisory. - In Sudo before 1.9.12p2, the sudoedit aka -e feature mishandles extra arguments passed in the user- provided environment variables SUDOEDITOR, VISUAL, and...

7.8CVSS8.2AI score0.55367EPSS
Exploits20References2
Tenable Nessus
Tenable Nessus
added 2023/11/07 12:0 a.m.24 views

Rocky Linux 9 : sudo (RLSA-2023:0282)

The remote Rocky Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2023:0282 advisory. - In Sudo before 1.9.12p2, the sudoedit aka -e feature mishandles extra arguments passed in the user- provided environment variables SUDOEDITOR, VISUAL, and...

7.8CVSS8.2AI score0.55367EPSS
Exploits20References3
Tenable Nessus
Tenable Nessus
added 2023/11/06 12:0 a.m.14 views

Rocky Linux 8 : sudo (RLSA-2023:0284)

The remote Rocky Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2023:0284 advisory. - In Sudo before 1.9.12p2, the sudoedit aka -e feature mishandles extra arguments passed in the user- provided environment variables SUDOEDITOR, VISUAL, and...

7.8CVSS8.2AI score0.55367EPSS
Exploits20References3
IBM Security Bulletins
IBM Security Bulletins
added 2023/09/18 8:4 p.m.70 views

Security Bulletin: IBM Security Guardium is affected by a multiple vulnerabilities (CVE-2023-22809, CVE-2019-12490, CVE-2023-0041)

Summary IBM Security Guardium has addressed these vulnerabilities. Vulnerability Details CVEID:CVE-2023-0041 DESCRIPTION: IBM Security Guardium could allow a user to take over another user's session due to insufficient session expiration. CVSS Base score: 6.3 CVSS Temporal Score: See:...

8.8CVSS7.3AI score0.55367EPSS
Exploits21Affected Software1
OSV
OSV
added 2023/08/31 12:13 p.m.2 views

BELL-CVE-2023-22809 CVE-2023-22809 does not affect BellSoft software

Bulletin has no description...

7.8CVSS7.3AI score0.55367EPSS
Exploits20References1
0day.today
0day.today
added 2023/08/20 12:0 a.m.451 views

Cisco ThousandEyes Enterprise Agent Virtual Appliance Arbitrary File Modification Vulnerability

Cisco ThousandEyes Enterprise Agent Virtual Appliance version thousandeyes-va-64-18.04 0.218 suffers from an unpatched vulnerability in sudoedit, allowed by sudo configuration, which permits a low-privilege user to modify arbitrary files as root and subsequently execute arbitrary commands as root...

7.8CVSS8.3AI score0.55367EPSS
Exploits20
KoreLogic Security
KoreLogic Security
added 2023/08/17 12:0 a.m.47 views

Cisco ThousandEyes Enterprise Agent Virtual Appliance Arbitrary File Modification via sudoedit

Vulnerability Details Affected Vendor: ThousandEyes Affected Product: ThousandEyes Enterprise Agent Virtual Appliance Affected Version: thousandeyes-va-64-18.04 0.218 Platform: Linux / Ubuntu 18.04 CWE Classification: CWE-1395: Dependency on Vulnerable Third-Party Component CVE ID:...

7.8CVSS7.3AI score0.55367EPSS
Exploits20Affected Software1
GithubExploit
GithubExploit
added 2023/08/06 6:46 a.m.398 views

Exploit for Improper Privilege Management in Sudo_Project Sudo

CVE-2023-22809 CVE-2023-22809 is a critical vulnerability...

7.8CVSS8.3AI score0.55367EPSS
Exploits20
Rows per page
Query Builder