4733 matches found
PAM module may allow accessing with the credentials of another user
Authd PAM module up to version 0.3.4 can allow broker-managed users to impersonate any other user managed by the same broker and perform any PAM operation with it, including authenticating as them. This is possible using tools such as su, sudo or ssh and potentially others that, so far, do not...
Synology DiskStation Manager Sudo Off-by-one Error (CVE-2021-3156)
Sudo before 1.9.5p2 contains an off-by-one error that can result in a heap-based buffer overflow, which allows privilege escalation to root via sudoedit -s and a command-line argument that ends with a single backslash character. This plugin only works with Tenable.ot. Please visit...
Advisory ROSA-SA-2024-2478
software: yajl 2.1.0 WASP: ROSA-CHROME packageevrstring: yajl-2.1.0-2 CVE-ID: CVE-2023-33460 BDU-ID: 2023-07652 CVE-Crit: HIGH CVE-DESC.: A vulnerability in the yajltreeparse function of the YAJL-ruby JSON library is related to improper memory freeing before deleting the last reference...
Advisory ROSA-SA-2024-2477
software: squid 5.9 WASP: ROSA-CHROME packageevrstring: squid-5.9-2 CVE-ID: CVE-2023-46724 BDU-ID: 2023-07699 CVE-Crit: HIGH CVE-DESC.: A vulnerability in the Squid proxy server is related to errors in SSL/TLS certificate validation. Exploitation of the vulnerability could allow an attacker actin...
EulerOS 2.0 SP8 : sudo (EulerOS-SA-2024-2493)
According to the versions of the sudo package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : Sudo before 1.9.13 does not escape control characters in sudoreplay output.CVE-2023-28487 Sudo before 1.9.13 does not escape control characters in lo...
Huawei EulerOS: Security Advisory for sudo (EulerOS-SA-2024-2493)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
RHSA-2005:535 Red Hat Security Advisory: sudo security update
Bulletin has no description...
RHSA-2024:0811 Red Hat Security Advisory: sudo security update
Bulletin has no description...
RHSA-2023:0293 Red Hat Security Advisory: sudo security update
Bulletin has no description...
RHSA-2023:0291 Red Hat Security Advisory: sudo security update
Bulletin has no description...
RHSA-2023:0281 Red Hat Security Advisory: sudo security update
Bulletin has no description...
RHSA-2023:0280 Red Hat Security Advisory: sudo security update
Bulletin has no description...
RHSA-2023:0284 Red Hat Security Advisory: sudo security update
Bulletin has no description...
RHSA-2023:0282 Red Hat Security Advisory: sudo security update
Bulletin has no description...
RHSA-2023:3264 Red Hat Security Advisory: sudo security update
Bulletin has no description...
RHSA-2023:0287 Red Hat Security Advisory: sudo security update
Bulletin has no description...
RHSA-2023:3262 Red Hat Security Advisory: sudo security update
Bulletin has no description...
RHSA-2023:0292 Red Hat Security Advisory: sudo security update
Bulletin has no description...
RHSA-2023:3276 Red Hat Security Advisory: sudo security update
Bulletin has no description...
RHSA-2023:0283 Red Hat Security Advisory: sudo security update
Bulletin has no description...