Lucene search
K

4730 matches found

Tenable Nessus
Tenable Nessus
added 2021/01/27 12:0 a.m.46 views

RHEL 7 : sudo (RHSA-2021:0225)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2021:0225 advisory. The sudo packages contain the sudo utility which allows system administrators to provide certain users with the permission to execute privileged...

7.8CVSS7.4AI score0.99295EPSS
Exploits81References5
Tenable Nessus
Tenable Nessus
added 2021/01/27 12:0 a.m.60 views

RHEL 7 : sudo (RHSA-2021:0222)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2021:0222 advisory. The sudo packages contain the sudo utility which allows system administrators to provide certain users with the permission to execute privileged...

7.8CVSS7.4AI score0.99295EPSS
Exploits81References5
NCSC
NCSC
added 2021/01/27 12:0 a.m.4 views

Vulnerabilities fixed in sudo

Several vulnerabilities have been fixed in sudo. A local malicious party can, by exploiting these vulnerabilities, gain gain root privileges on the vulnerable system. The developers of sudo have released updates to fix the vulnerability marked CVE-2021-3156 in version 1.9.5p2. The vulnerabilities...

7.8CVSS8.7AI score0.99295EPSS
Exploits83
Tenable Nessus
Tenable Nessus
added 2021/01/27 12:0 a.m.48 views

GLSA-202101-33 : sudo: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-202101-33 sudo: Multiple vulnerabilities Multiple vulnerabilities have been discovered in sudo. Please review the CVE identifiers referenced below for details. Impact : Local users are able to gain unauthorized privileges on the...

7.8CVSS7AI score0.99295EPSS
Exploits83References6
Tenable Nessus
Tenable Nessus
added 2021/01/27 12:0 a.m.452 views

Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS : Sudo vulnerabilities (USN-4705-1)

The remote Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-4705-1 advisory. It was discovered that Sudo incorrectly handled memory when parsing command lines. A local attacker could possibly use this issue...

7.8CVSS7AI score0.99295EPSS
Exploits82References3
Tenable Nessus
Tenable Nessus
added 2021/01/27 12:0 a.m.47 views

RHEL 8 : sudo (RHSA-2021:0220)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2021:0220 advisory. The sudo packages contain the sudo utility which allows system administrators to provide certain users with the permission to execute privileged...

7.8CVSS7.4AI score0.99295EPSS
Exploits81References5
Tenable Nessus
Tenable Nessus
added 2021/01/27 12:0 a.m.52 views

Fedora 32 : sudo (2021-8840cbdccd)

The remote Fedora 32 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2021-8840cbdccd advisory. - Sudo before 1.9.5p2 contains an off-by-one error that can result in a heap-based buffer overflow, which allows privilege escalation to root via...

7.8CVSS7.2AI score0.99295EPSS
Exploits82References2
OPENSUSE Linux
OPENSUSE Linux
added 2021/01/27 12:0 a.m.30 views

Security update for sudo (important)

openSUSE Security Update: Security update for sudo Announcement ID: openSUSE-SU-2021:0169-1 Rating: important References: 1180684 1180685 1180687 1181090 Cross-References: CVE-2021-23239 CVE-2021-23240 CVE-2021-3156 Affected Products: openSUSE Leap 15.1 An update that solves three vulnerabilities...

7.8CVSS8.1AI score0.99295EPSS
Exploits83References4
OPENSUSE Linux
OPENSUSE Linux
added 2021/01/27 12:0 a.m.47 views

Security update for sudo (important)

openSUSE Security Update: Security update for sudo Announcement ID: openSUSE-SU-2021:0170-1 Rating: important References: 1180684 1180685 1180687 1181090 Cross-References: CVE-2021-23239 CVE-2021-23240 CVE-2021-3156 Affected Products: openSUSE Leap 15.2 An update that solves three vulnerabilities...

7.8CVSS8.1AI score0.99295EPSS
Exploits83References4
RedHat Linux
RedHat Linux
added 2021/01/26 10:8 p.m.384 views

Important: Red Hat Security Advisory: sudo security update

An update for sudo is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the...

7.8CVSS7.4AI score0.99295EPSS
Exploits81References3
Veracode
Veracode
added 2021/01/26 9:59 p.m.31 views

Privilege Escalation

sudo is vulnerable to privilege escalation. The vulnerability exists through a heap-based buffer overflow, through sudoedit -s and a command line argument ending with a \ character...

7.8CVSS3.8AI score0.99295EPSS
Exploits81References37Affected Software5
Slackware Linux
Slackware Linux
added 2021/01/26 9:34 p.m.79 views

[slackware-security] sudo

New sudo packages are available for Slackware 14.0, 14.1, 14.2, and -current to fix security issues. Here are the details from the Slackware 14.2 ChangeLog: patches/packages/sudo-1.9.5p2-i586-1slack14.2.txz: Upgraded. When invoked as sudoedit, the same set of command line options are now accepted...

7.8CVSS8.5AI score0.99295EPSS
Exploits81
NVD
NVD
added 2021/01/26 9:15 p.m.31 views

CVE-2021-3156

Sudo before 1.9.5p2 contains an off-by-one error that can result in a heap-based buffer overflow, which allows privilege escalation to root via "sudoedit -s" and a command-line argument that ends with a single backslash character...

7.8CVSS8.2AI score0.99295EPSS
Exploits81References35
OSV
OSV
added 2021/01/26 9:15 p.m.4 views

ALPINE-CVE-2021-3156

Sudo before 1.9.5p2 contains an off-by-one error that can result in a heap-based buffer overflow, which allows privilege escalation to root via "sudoedit -s" and a command-line argument that ends with a single backslash character...

7.8CVSS7.4AI score0.99295EPSS
Exploits81References1
OSV
OSV
added 2021/01/26 9:15 p.m.27 views

CVE-2021-3156

Sudo before 1.9.5p2 contains an off-by-one error that can result in a heap-based buffer overflow, which allows privilege escalation to root via "sudoedit -s" and a command-line argument that ends with a single backslash character...

7.8CVSS8.1AI score0.99295EPSS
Exploits81References35
OSV
OSV
added 2021/01/26 9:15 p.m.2 views

DEBIAN-CVE-2021-3156

Sudo before 1.9.5p2 contains an off-by-one error that can result in a heap-based buffer overflow, which allows privilege escalation to root via "sudoedit -s" and a command-line argument that ends with a single backslash character...

7.8CVSS7.4AI score0.99295EPSS
Exploits81References1
Prion
Prion
added 2021/01/26 9:15 p.m.37 views

Heap overflow

Sudo before 1.9.5p2 contains an off-by-one error that can result in a heap-based buffer overflow, which allows privilege escalation to root via "sudoedit -s" and a command-line argument that ends with a single backslash character...

7.2CVSS8.1AI score0.99295EPSS
Exploits81References33Affected Software15
RedHat Linux
RedHat Linux
added 2021/01/26 8:51 p.m.5 views

sudo: Heap buffer overflow in argument parsing

A flaw was found in sudo. A heap-based buffer overflow was found in the way sudo parses command line arguments. This flaw is exploitable by any local user who can execute the sudo command by default, any local user can execute sudo without authentication. Successful exploitation of this flaw coul...

7.8CVSS7.1AI score0.99295EPSS
Exploits81References8
RedHat Linux
RedHat Linux
added 2021/01/26 8:51 p.m.462 views

Important: Red Hat Security Advisory: sudo security update

An update for sudo is now available for Red Hat Enterprise Linux 7.7 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for ea...

7.8CVSS7.4AI score0.99295EPSS
Exploits81References3
RedHat Linux
RedHat Linux
added 2021/01/26 8:6 p.m.130 views

Important: Red Hat Security Advisory: sudo security update

An update for sudo is now available for Red Hat Enterprise Linux 7.4 Advanced Update Support, Red Hat Enterprise Linux 7.4 Telco Extended Update Support, and Red Hat Enterprise Linux 7.4 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact ...

7.8CVSS7.4AI score0.99295EPSS
Exploits81References3
Rows per page
Query Builder