Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

OpenVAS
OpenVASadded 2025/09/10 12:0 a.m.3 views

Huawei EulerOS: Security Advisory for sudo (EulerOS-SA-2025-2060)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS6.7AI score0.30014EPSS
Exploits12References2
Amazon
Amazonadded 2025/07/10 12:0 a.m.3 views

Important: sudo

Issue Overview: Sudo before 1.9.17p1, when used with a sudoers file that specifies a host that is neither the current host nor ALL, allows listed users to execute commands on unintended machines. CVE-2025-32462 Affected Packages: sudo Note: This advisory is applicable to Amazon Linux 2 AL2 Core...

8.8CVSS7.3AI score0.30014EPSS
Exploits12
Tenable Nessus
Tenable Nessusadded 2024/01/24 12:0 a.m.21 views

GLSA-202401-29 : sudo: Memory Manipulation

The remote host is affected by the vulnerability described in GLSA-202401-29 sudo: Memory Manipulation - Sudo before 1.9.15 might allow row hammer attacks for authentication bypass or privilege escalation because application logic sometimes is based on not equaling an error value instead of...

7CVSS6.7AI score0.00004EPSS
Exploits1References3
OSV
OSVadded 2023/03/16 1:15 a.m.0 views

UBUNTU-CVE-2023-28487

Sudo before 1.9.13 does not escape control characters in sudoreplay output...

5.3CVSS6.4AI score0.00136EPSS
Exploits0References5
Tenable Nessus
Tenable Nessusadded 2023/02/28 12:0 a.m.46 views

Oracle Linux 6 : sudo (ELSA-2023-12143)

The remote Oracle Linux 6 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2023-12143 advisory. 1.8.6p3-29.0.4.el610.3 - Fixed Privilege escalation CVE-2023-22809 for sudoedit Orabug: 35037922 Tenable has extracted the preceding description block directly...

7.8CVSS8AI score0.44372EPSS
Exploits20References2
OSV
OSVadded 2017/04/24 6:59 a.m.1 views

DEBIAN-CVE-2014-9680

sudo before 1.8.12 does not ensure that the TZ environment variable is associated with a zoneinfo file, which allows local users to open arbitrary files for read access but not view file contents by running a program within an sudo session, as demonstrated by interfering with terminal output,...

3.3CVSS4.3AI score0.0041EPSS
Exploits1References1
Prion
Prionadded 2017/04/14 6:59 p.m.17 views

Command injection

sudonoexec.so in Sudo before 1.8.15 on Linux might allow local users to bypass intended noexec command restrictions via an application that calls the 1 system or 2 popen function...

6.9CVSS6.7AI score0.00037EPSS
Exploits0References5Affected Software1
Prion
Prionadded 2015/11/17 3:59 p.m.13 views

Design/Logic Flaw

sudoedit in Sudo before 1.8.15 allows local users to gain privileges via a symlink attack on a file whose full path is defined using multiple wildcards in /etc/sudoers, as demonstrated by "/home///file.txt."...

7.2CVSS6.8AI score0.05506EPSS
Exploits5References9Affected Software1
UbuntuCve
UbuntuCveadded 2013/04/08 5:55 p.m.23 views

CVE-2013-2777

sudo before 1.7.10p5 and 1.8.x before 1.8.6p6, when the ttytickets option is enabled, does not properly validate the controlling terminal device, which allows local users with sudo permissions to hijack the authorization of another terminal via vectors related to a session without a controlling...

4.4CVSS7AI score0.00047EPSS
Exploits0References9
Rows per page
Query Builder