Описание
Sudo before 1.9.17p1, when used with a sudoers file that specifies a host that is neither the current host nor ALL, allows listed users to execute commands on unintended machines.
Ссылки
- Mailing ListThird Party Advisory
- Third Party Advisory
- ExploitThird Party Advisory
- Release Notes
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 1.9.17 (исключая)
Одно из
cpe:2.3:a:sudo_project:sudo:*:*:*:*:*:*:*:*
cpe:2.3:a:sudo_project:sudo:1.9.17:-:*:*:*:*:*:*
EPSS
Процентиль: 95%
0.20725
Средний
2.8 Low
CVSS3
8.8 High
CVSS3
Дефекты
CWE-863
Связанные уязвимости
CVSS3: 2.8
ubuntu
2 месяца назад
Sudo before 1.9.17p1, when used with a sudoers file that specifies a host that is neither the current host nor ALL, allows listed users to execute commands on unintended machines.
CVSS3: 7
redhat
2 месяца назад
Sudo before 1.9.17p1, when used with a sudoers file that specifies a host that is neither the current host nor ALL, allows listed users to execute commands on unintended machines.
CVSS3: 2.8
debian
2 месяца назад
Sudo before 1.9.17p1, when used with a sudoers file that specifies a h ...
EPSS
Процентиль: 95%
0.20725
Средний
2.8 Low
CVSS3
8.8 High
CVSS3
Дефекты
CWE-863