The vulnerability of the Cisco CX Cloud Agent, a cloud-based customer support agent, relates to deficiencies in access control. This allows attackers to enhance their privileges and gain full control over the affected device.

The vulnerability of Cisco CX Cloud Agent, a customer technical support agent, is related to deficiencies in access control. Exploiting this vulnerability can allow attackers to enhance their privileges and gain full control over the affected device using the sudo command...

SUSE: Security Advisory (SUSE-SU-2023:0115-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

RHEL 9 : sudo (RHSA-2023:0281)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2023:0281 advisory. The sudo packages contain the sudo utility which allows system administrators to provide certain users with the permission to execute privileged...

ALSA-2023:0284 Important: sudo security update

The sudo packages contain the sudo utility which allows system administrators to provide certain users with the permission to execute privileged commands, which are used for system management purposes, without having to log in as root. Security Fixes: sudo: arbitrary file write with privileges of...

SUSE: Security Advisory (SUSE-SU-2023:0116-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2023:0114-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2023:0117-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

ALSA-2023:0282 Important: sudo security update

The sudo packages contain the sudo utility which allows system administrators to provide certain users with the permission to execute privileged commands, which are used for system management purposes, without having to log in as root. Security Fixes: sudo: arbitrary file write with privileges of...

[SECURITY] Fedora 37 Update: sudo-1.9.12-1.p2.fc37

Sudo superuser do allows a system administrator to give certain users or groups of users the ability to run some or all commands as root while logging all commands and arguments. Sudo operates on a per-command basis. It is not a replacement for the shell. Features include: the ability to restrict...

Fedora: Security Advisory for sudo (FEDORA-2023-9078f609e6)

The remote host is missing an update for the Copyright C 2023 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Fedora 37 : sudo (2023-9078f609e6)

The remote Fedora 37 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2023-9078f609e6 advisory. Rebase to sudo-1.9.12p2 - security fix for CVE-2023-22809 Tenable has extracted the preceding description block directly from the Fedora security advisory...

Exploit for Improper Privilege Management in Sudo_Project Sudo

CVE-2023-22809 sudo Privilege escalation Affected sudo ve...

Exploit for Improper Privilege Management in Sudo_Project Sudo

CVE-2023-22809 sudo Privilege escalation Affected sudo ve...

SUSE SLES15 Security Update : sudo (SUSE-SU-2023:0116-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2023:0116-1 advisory. - In Sudo before 1.9.12p2, the sudoedit aka -e feature mishandles extra arguments passed in the user- provided environment variables...

SUSE SLES15 Security Update : sudo (SUSE-SU-2023:0115-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2023:0115-1 advisory. - In Sudo before 1.9.12p2, the sudoedit aka -e feature mishandles extra arguments passed in the user- provided environment variables...

SUSE SLES12 Security Update : sudo (SUSE-SU-2023:0117-1)

The remote SUSE Linux SLES12 / SLESSAP12 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2023:0117-1 advisory. - In Sudo before 1.9.12p2, the sudoedit aka -e feature mishandles extra arguments passed in the user- provided environment variables...

SUSE SLED15 / SLES15 / openSUSE 15 Security Update : sudo (SUSE-SU-2023:0114-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2023:0114-1 advisory. - In Sudo before 1.9.12p2, the sudoedit aka -e feature mishandles extra arguments passed in the user-...

Privilege Escalation

sudo is vulnerable to Privilege Escalation. The vulnerability exists due to mishandled extra arguments passed in the user-provided environment variables. which allows to attacker to append arbitrary entries to the list of files to process, leading to accessing user information...

SUSE-SU-2023:0116-1 Security update for sudo

This update for sudo fixes the following issues: - CVE-2023-22809: Fixed an arbitrary file write issue that could be exploited by users with sudoedit permissions bsc1207082. Other fixes: - Fixed a potential crash while using the sssd plugin bsc1206170...

SUSE-SU-2023:0115-1 Security update for sudo

This update for sudo fixes the following issues: - CVE-2023-22809: Fixed an arbitrary file write issue that could be exploited by users with sudoedit permissions bsc1207082...