Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sudo vulnerabilities and exploits
(subscribe to this query)
7
CVSSv3
CVE-2015-8239
The SHA-2 digest support in the sudoers plugin in sudo after 1.8.7 allows local users with write permissions to parts of the called command to replace them before it is executed.
Sudo Project Sudo 1.8.15
Sudo Project Sudo 1.8.14
Sudo Project Sudo 1.8.13
Sudo Project Sudo 1.8.12
Sudo Project Sudo 1.8.10
Sudo Project Sudo 1.8.9
Sudo Project Sudo 1.8.11
Sudo Project Sudo 1.8.8
1 Github repository
NA
CVE-2011-0008
A certain Fedora patch for parse.c in sudo prior to 1.7.4p5-1.fc14 on Fedora 14 does not properly interpret a system group (aka %group) in the sudoers file during authorization decisions for a user who belongs to that group, which allows local users to leverage an applicable sudo...
Todd Miller Sudo
Todd Miller Sudo 1.3.1
Todd Miller Sudo 1.5
Todd Miller Sudo 1.5.2
Todd Miller Sudo 1.5.3
Todd Miller Sudo 1.5.6
Todd Miller Sudo 1.5.7
Todd Miller Sudo 1.5.8
Todd Miller Sudo 1.5.9
Todd Miller Sudo 1.6
Todd Miller Sudo 1.6.1
Todd Miller Sudo 1.6.2
Todd Miller Sudo 1.6.2p1
Todd Miller Sudo 1.6.2p2
Todd Miller Sudo 1.6.2p3
Todd Miller Sudo 1.6.3
Todd Miller Sudo 1.6.3 P1
Todd Miller Sudo 1.6.3 P2
Todd Miller Sudo 1.6.3 P3
Todd Miller Sudo 1.6.3 P4
Todd Miller Sudo 1.6.3 P5
Todd Miller Sudo 1.6.3 P6
NA
CVE-2007-4305
Multiple race conditions in the (1) Sudo monitor mode and (2) Sysjail policies in Systrace on NetBSD and OpenBSD allow local users to defeat system call interposition, and consequently bypass access control policy and auditing.
Todd Miller Sudo 1.5.7
Todd Miller Sudo 1.5.9
Todd Miller Sudo 1.6.1
Todd Miller Sudo 1.6.3 P3
Todd Miller Sudo 1.6.3 P5
Todd Miller Sudo 1.6.3p5
Todd Miller Sudo 1.6.3p7
Todd Miller Sudo 1.6.4p2
Todd Miller Sudo 1.6.5 P1
Todd Miller Sudo 1.6.5p1
Todd Miller Sudo 1.6.8
Todd Miller Sudo 1.6.8 P12
Sysjail Sysjail
Systrace Systrace
Todd Miller Sudo 1.5.6
Todd Miller Sudo 1.6.3 P7
Todd Miller Sudo 1.6.3p1
Todd Miller Sudo 1.6.3p2
Todd Miller Sudo 1.6.3p3
Todd Miller Sudo 1.6.5p2
Todd Miller Sudo 1.6.6
Todd Miller Sudo 1.6.7
1 EDB exploit
NA
CVE-2013-2777
sudo prior to 1.7.10p5 and 1.8.x prior to 1.8.6p6, when the tty_tickets option is enabled, does not properly validate the controlling terminal device, which allows local users with sudo permissions to hijack the authorization of another terminal via vectors related to a session w...
Apple Mac Os X
Todd Miller Sudo 1.7.9p1
Todd Miller Sudo 1.7.9
Todd Miller Sudo 1.7.6
Todd Miller Sudo 1.7.5
Todd Miller Sudo 1.7.4p6
Todd Miller Sudo 1.7.3b1
Todd Miller Sudo 1.7.2p7
Todd Miller Sudo 1.7.1
Todd Miller Sudo 1.6.4
Todd Miller Sudo 1.7.10
Todd Miller Sudo 1.7.6p2
Todd Miller Sudo 1.7.6p1
Todd Miller Sudo 1.7.4p1
Todd Miller Sudo 1.7.4p4
Todd Miller Sudo 1.7.2
Todd Miller Sudo 1.7.2p1
Todd Miller Sudo 1.6.9p20
Todd Miller Sudo 1.6.9p21
Todd Miller Sudo 1.6.7p5
Todd Miller Sudo 1.6.8p12
Todd Miller Sudo 1.7.10p1
NA
CVE-2010-1646
The secure path feature in env.c in sudo 1.3.1 up to and including 1.6.9p22 and 1.7.0 up to and including 1.7.2p6 does not properly handle an environment that contains multiple PATH variables, which might allow local users to gain privileges via a crafted value of the last PATH v...
Todd Miller Sudo 1.3.1
Todd Miller Sudo 1.7.0
Todd Miller Sudo 1.7.2p5
Todd Miller Sudo 1.7.2p6
Todd Miller Sudo 1.6.2p2
Todd Miller Sudo 1.6.2p3
Todd Miller Sudo 1.6.3
Todd Miller Sudo 1.6.3p7
Todd Miller Sudo 1.6.4
Todd Miller Sudo 1.6.7
Todd Miller Sudo 1.6.7p1
Todd Miller Sudo 1.6.8p3
Todd Miller Sudo 1.6.8p4
Todd Miller Sudo 1.6.8p11
Todd Miller Sudo 1.6.8p12
Todd Miller Sudo 1.6.9p6
Todd Miller Sudo 1.6.9p7
Todd Miller Sudo 1.6.9p15
Todd Miller Sudo 1.6.9p16
Todd Miller Sudo 1.7.2p1
Todd Miller Sudo 1.7.2p2
Todd Miller Sudo 1.6
NA
CVE-2013-1776
sudo 1.3.5 up to and including 1.7.10 and 1.8.0 up to and including 1.8.5, when the tty_tickets option is enabled, does not properly validate the controlling terminal device, which allows local users with sudo permissions to hijack the authorization of another terminal via vector...
Apple Mac Os X
Todd Miller Sudo 1.8.1p2
Todd Miller Sudo 1.8.2
Todd Miller Sudo 1.8.4p4
Todd Miller Sudo 1.8.4p5
Todd Miller Sudo 1.8.3
Todd Miller Sudo 1.8.3p1
Todd Miller Sudo 1.8.3p2
Todd Miller Sudo 1.8.5
Todd Miller Sudo 1.8.0
Todd Miller Sudo 1.8.4
Todd Miller Sudo 1.8.4p1
Todd Miller Sudo 1.8.1
Todd Miller Sudo 1.8.1p1
Todd Miller Sudo 1.8.4p2
Todd Miller Sudo 1.8.4p3
Todd Miller Sudo 1.7.8p1
Todd Miller Sudo 1.7.8
Todd Miller Sudo 1.7.4p2
Todd Miller Sudo 1.7.4p3
Todd Miller Sudo 1.7.4
Todd Miller Sudo 1.7.2p4
NA
CVE-2013-2776
sudo 1.3.5 up to and including 1.7.10p5 and 1.8.0 up to and including 1.8.6p6, when running on systems without /proc or the sysctl function with the tty_tickets option enabled, does not properly validate the controlling terminal device, which allows local users with sudo permissi...
Todd Miller Sudo 1.7.8p1
Todd Miller Sudo 1.7.8
Todd Miller Sudo 1.7.4p3
Todd Miller Sudo 1.7.4
Todd Miller Sudo 1.7.2p4
Todd Miller Sudo 1.7.7
Todd Miller Sudo 1.7.6p2
Todd Miller Sudo 1.7.4p1
Todd Miller Sudo 1.7.4p4
Todd Miller Sudo 1.7.2p3
Todd Miller Sudo 1.7.2
Todd Miller Sudo 1.6.4p2
Todd Miller Sudo 1.6.9p20
Todd Miller Sudo 1.6.7p5
Todd Miller Sudo 1.6.8p12
Todd Miller Sudo 1.3.5
Todd Miller Sudo 1.7.10
Todd Miller Sudo 1.7.2p2
Todd Miller Sudo 1.6.9p23
Todd Miller Sudo 1.6.5
Todd Miller Sudo 1.6.9p22
Todd Miller Sudo 1.6.2p3
NA
CVE-2013-1775
sudo 1.6.0 up to and including 1.7.10p6 and sudo 1.8.0 up to and including 1.8.6p6 allows local users or physically proximate malicious users to bypass intended time restrictions and retain privileges without re-authenticating by setting the system clock and sudo user timestamp t...
Todd Miller Sudo 1.6.9p21
Todd Miller Sudo 1.6.7p5
Todd Miller Sudo 1.6.1
Todd Miller Sudo 1.6.6
Todd Miller Sudo 1.6.9p22
Todd Miller Sudo 1.6.2p3
Todd Miller Sudo 1.6.4
Todd Miller Sudo 1.6.8p12
Todd Miller Sudo 1.6.2
Todd Miller Sudo 1.6.7
Todd Miller Sudo 1.6.9p23
Todd Miller Sudo 1.6.5
Todd Miller Sudo 1.6.3 P7
Todd Miller Sudo 1.6.9
Todd Miller Sudo 1.6.3
Todd Miller Sudo 1.6.4p2
Todd Miller Sudo 1.6.9p20
Todd Miller Sudo 1.6
Todd Miller Sudo 1.6.8
Todd Miller Sudo 1.8.1p2
Todd Miller Sudo 1.8.2
Todd Miller Sudo 1.8.4p3
2 EDB exploits
1 Github repository
7.1
CVSSv3
CVE-2022-43995
Sudo 1.8.0 up to and including 1.9.12, with the crypt() password backend, contains a plugins/sudoers/auth/passwd.c array-out-of-bounds error that can result in a heap-based buffer over-read. This can be triggered by arbitrary local users with access to Sudo by entering a password...
Sudo Project Sudo 1.9.12
Sudo Project Sudo
8.2
CVSSv3
CVE-2017-1000368
Todd Miller's sudo version 1.8.20p1 and previous versions is vulnerable to an input validation (embedded newlines) in the get_process_ttyname() function resulting in information disclosure and command execution.
Sudo Project Sudo 1.8.20
Sudo Project Sudo
2 Github repositories
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-38298
CVE-2024-20356
CVE-2023-21987
CVE-2024-33217
bypass
CVE-2024-31804
CVE-2024-32660
unauthorized
SSRF
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »