Amazon AWS amazon-ssm-agent prior to 3.1.1208.0 creates a world-writable sudoers file, which allows local malicious users to inject Sudo rules and escalate privileges to root. This occurs in certain situations involving a race condition.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
amazon amazon ssm agent |