Ubuntu 22.04 LTS / 24.04 LTS / 25.10 : Sudo vulnerability (USN-8092-1)

The remote Ubuntu 22.04 LTS / 24.04 LTS / 25.10 host has packages installed that are affected by a vulnerability as referenced in the USN-8092-1 advisory. It was discovered that Sudo incorrectly checked return codes when dropping privileges to run the mailer. A local attacker could possibly use...

USN-8092-1: Sudo vulnerability

It was discovered that Sudo incorrectly checked return codes when dropping privileges to run the mailer. A local attacker could possibly use this issue to escalate privileges...

USN-8092-1 sudo vulnerability

It was discovered that Sudo incorrectly checked return codes when dropping privileges to run the mailer. A local attacker could possibly use this issue to escalate privileges...

Exploit for Off-by-one Error in Sudo_Project Sudo

CVE-2021-3156 — "Baron Samedit" Lab & Exploit This repository...

CVE-2025-41761

A low‑privileged local attacker who gains access to the UBR service account e.g., via SSH can escalate privileges to obtain full system access. This is due to the service account being permitted to execute certain binaries e.g., tcpdump and ip with sudo...

EUVD-2025-208369

A low‑privileged local attacker who gains access to the UBR service account e.g., via SSH can escalate privileges to obtain full system access. This is due to the service account being permitted to execute certain binaries e.g., tcpdump and ip with sudo...

EUVD-2025-208368

A low‑privileged local attacker who gains access to the UBR service account e.g., via SSH can escalate privileges to obtain full system access. This is due to the service account being permitted to execute certain binaries e.g., tcpdump and ip with sudo...

CVE-2025-41761

A low‑privileged local attacker who gains access to the UBR service account e.g., via SSH can escalate privileges to obtain full system access. This is due to the service account being permitted to execute certain binaries e.g., tcpdump and ip with sudo...

CVE-2025-41761

A low‑privileged local attacker who gains access to the UBR service account e.g., via SSH can escalate privileges to obtain full system access. This is due to the service account being permitted to execute certain binaries e.g., tcpdump and ip with sudo...

CVE-2025-41761

CVE-2025-41761 describes a local privilege escalation where a low-privileged user who accesses the UBR service account (for example via SSH) can gain full system access. The root cause is the service account’s ability to run certain binaries (such as tcpdump and ip) with sudo, enabling elevated p...

CVE-2025-41761 Privilege escalation possible

A low‑privileged local attacker who gains access to the UBR service account e.g., via SSH can escalate privileges to obtain full system access. This is due to the service account being permitted to execute certain binaries e.g., tcpdump and ip with sudo...

PT-2026-24031

Name of the Vulnerable Software and Affected Versions UBR affected versions not specified Description A local attacker with limited privileges who gains access to the UBR service account, for example through SSH, can escalate their privileges to achieve full system access. This is possible becaus...

MBS多款产品 参数注入漏洞

MBS UBR-01 Mk II, etc., are products of the German MBS company. The MBS UBR-01 Mk II is a remote base station device. The MBS UBR-02 is also a remote base station device. The MBS UBR-LON is a communication interface device for industrial automation systems. Several MBS products have parameter...

AZL-79446 CVE-2026-3381 affecting package sudo 1.9.17-1

Compress::Raw::Zlib versions through 2.219 for Perl use potentially insecure versions of zlib. Compress::Raw::Zlib includes a copy of the zlib library. Compress::Raw::Zlib version 2.220 includes zlib 1.3.2, which addresses findings fron the 7ASecurity audit of zlib. The includes fixs for...

AZL-79478 CVE-2026-3381 affecting package sudo 1.9.17-1

Compress::Raw::Zlib versions through 2.219 for Perl use potentially insecure versions of zlib. Compress::Raw::Zlib includes a copy of the zlib library. Compress::Raw::Zlib version 2.220 includes zlib 1.3.2, which addresses findings fron the 7ASecurity audit of zlib. The includes fixs for...

linux-privilege-escalation-oscp-guide

🔥 Cyber Public School – Linux Privilege Escalation Ultra Guide...

theshit's Improper Privilege Dropping Allows Local Privilege Escalation via Command Re-execution

Impact Vulnerability Type: Local Privilege Escalation LPE / Improper Privilege Management / Arbitrary Command Execution. The application automatically re-executes the previously failed command but does not properly drop elevated privileges during this process. When the tool is executed with sudo ...

Wing-FTP-Privilege-Escalation-Tar-Extraction-Exploit

Wing-FTP-Privilege-Escalation-Tar-Extraction-Exploit This...

📄 sudo 1.9.17 chroot Privilege Escalation

This Metasploit module exploits CVE-2025-32463, a local privilege escalation vulnerability in Sudo's chroot functionality. The vulnerability allows attackers to load malicious NSS Name Service Switch modules from within a chroot environment, leading to arbitrary code execution as root...

exploit-notes

🎯 Pentest Playbook Index Welcome to the comprehensive penetra...