CVE-2010-0427

Опубликовано: 25 фев. 2010

Источник: nvd

CVSS2: 4.4

EPSS Низкий

Описание

sudo 1.6.x before 1.6.9p21, when the runas_default option is used, does not properly set group memberships, which allows local users to gain privileges via a sudo command.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:todd_miller:sudo:1.6:*:*:*:*:*:*:*

cpe:2.3:a:todd_miller:sudo:1.6.1:*:*:*:*:*:*:*

cpe:2.3:a:todd_miller:sudo:1.6.2:*:*:*:*:*:*:*

cpe:2.3:a:todd_miller:sudo:1.6.3:*:*:*:*:*:*:*

cpe:2.3:a:todd_miller:sudo:1.6.3_p1:*:*:*:*:*:*:*

cpe:2.3:a:todd_miller:sudo:1.6.3_p2:*:*:*:*:*:*:*

cpe:2.3:a:todd_miller:sudo:1.6.3_p3:*:*:*:*:*:*:*

cpe:2.3:a:todd_miller:sudo:1.6.3_p4:*:*:*:*:*:*:*

cpe:2.3:a:todd_miller:sudo:1.6.3_p5:*:*:*:*:*:*:*

cpe:2.3:a:todd_miller:sudo:1.6.3_p6:*:*:*:*:*:*:*

cpe:2.3:a:todd_miller:sudo:1.6.3_p7:*:*:*:*:*:*:*

cpe:2.3:a:todd_miller:sudo:1.6.4_p1:*:*:*:*:*:*:*

cpe:2.3:a:todd_miller:sudo:1.6.4_p2:*:*:*:*:*:*:*

cpe:2.3:a:todd_miller:sudo:1.6.5:*:*:*:*:*:*:*

cpe:2.3:a:todd_miller:sudo:1.6.5_p1:*:*:*:*:*:*:*

cpe:2.3:a:todd_miller:sudo:1.6.5_p2:*:*:*:*:*:*:*

cpe:2.3:a:todd_miller:sudo:1.6.6:*:*:*:*:*:*:*

cpe:2.3:a:todd_miller:sudo:1.6.7:*:*:*:*:*:*:*

cpe:2.3:a:todd_miller:sudo:1.6.7_p5:*:*:*:*:*:*:*

cpe:2.3:a:todd_miller:sudo:1.6.8:*:*:*:*:*:*:*

cpe:2.3:a:todd_miller:sudo:1.6.8_p1:*:*:*:*:*:*:*

cpe:2.3:a:todd_miller:sudo:1.6.8_p5:*:*:*:*:*:*:*

cpe:2.3:a:todd_miller:sudo:1.6.8_p8:*:*:*:*:*:*:*

cpe:2.3:a:todd_miller:sudo:1.6.8_p9:*:*:*:*:*:*:*

cpe:2.3:a:todd_miller:sudo:1.6.8_p12:*:*:*:*:*:*:*

cpe:2.3:a:todd_miller:sudo:1.6.9_p17:*:*:*:*:*:*:*

cpe:2.3:a:todd_miller:sudo:1.6.9_p18:*:*:*:*:*:*:*

cpe:2.3:a:todd_miller:sudo:1.6.9_p19:*:*:*:*:*:*:*

EPSS

Процентиль: 24%

0.00078

Низкий

4.4 Medium

CVSS2

Дефекты

CWE-264

Связанные уязвимости

CVE-2010-0427

ubuntu

больше 15 лет назад

sudo 1.6.x before 1.6.9p21, when the runas_default option is used, does not properly set group memberships, which allows local users to gain privileges via a sudo command.

CVE-2010-0427

redhat

около 16 лет назад

sudo 1.6.x before 1.6.9p21, when the runas_default option is used, does not properly set group memberships, which allows local users to gain privileges via a sudo command.

CVE-2010-0427

debian

больше 15 лет назад

sudo 1.6.x before 1.6.9p21, when the runas_default option is used, doe ...

GHSA-fvmp-m2wj-xqp8

github

около 3 лет назад

sudo 1.6.x before 1.6.9p21, when the runas_default option is used, does not properly set group memberships, which allows local users to gain privileges via a sudo command.

ELSA-2010-0122

oracle-oval

больше 15 лет назад

ELSA-2010-0122: sudo security update (IMPORTANT)

EPSS

Процентиль: 24%

0.00078

Низкий

4.4 Medium

CVSS2

Дефекты

CWE-264