CVE-2021-3156
Published Jan 26, 2021
·
Last updated a month ago
Description
Sudo before 1.9.5p2 contains an off-by-one error that can result in a heap-based buffer overflow, which allows privilege escalation to root via "sudoedit -s" and a command-line argument that ends with a single backslash character.
Risk scores
CVSS 3.1
- Primary
- 7.8
- 5.9
- 1.8
- CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
- HIGH
CVSS 2.0
- Primary
- 7.2
- 10
- 3.9
- AV:L/AC:L/Au:N/C:C/I:C/A:C
Known exploits
Data from CISA
Sudo Heap-Based Buffer Overflow Vulnerability
Apr 6, 2022
Apr 27, 2022
Apply updates per vendor instructions.
Weaknesses
Source
cve@mitre.org
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:sudo_project:sudo:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "ED707F57-531B-4066-AFF0-7239F87B6BF5",
"versionEndExcluding": "1.8.32",
"versionStartIncluding": "1.8.2"
},
{
"criteria": "cpe:2.3:a:sudo_project:sudo:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "38FC37F7-DE89-4078-BB55-EBFBF3A2D780",
"versionEndExcluding": "1.9.5",
"versionStartIncluding": "1.9.0"
},
{
"criteria": "cpe:2.3:a:sudo_project:sudo:1.9.5:-:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "436F3F62-FBA8-44CB-A5A9-AA4D7E0F9A09"
},
{
"criteria": "cpe:2.3:a:sudo_project:sudo:1.9.5:patch1:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "3C21138F-EB70-4AAE-9F45-C75CCE59BA89"
}
],
"operator": "OR"
}
]
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:fedoraproject:fedora:32:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "36D96259-24BD-44E2-96D9-78CE1D41F956"
},
{
"criteria": "cpe:2.3:o:fedoraproject:fedora:33:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "E460AA51-FCDA-46B9-AE97-E6676AA5E194"
}
],
"operator": "OR"
}
]
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "DEECE5FC-CACF-4496-A3E7-164736409252"
},
{
"criteria": "cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "07B237A9-69A3-4A9C-9DA0-4E06BD37AE73"
}
],
"operator": "OR"
}
]
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:netapp:active_iq_unified_manager:-:*:*:*:*:vmware_vsphere:*:*",
"vulnerable": true,
"matchCriteriaId": "3A756737-1CC4-42C2-A4DF-E1C893B4E2D5"
},
{
"criteria": "cpe:2.3:a:netapp:cloud_backup:-:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "5C2089EE-5D7F-47EC-8EA5-0F69790564C4"
},
{
"criteria": "cpe:2.3:a:netapp:hci_management_node:-:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A3C19813-E823-456A-B1CE-EC0684CE1953"
},
{
"criteria": "cpe:2.3:a:netapp:oncommand_unified_manager_core_package:-:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "0A4D418D-B526-46B9-B439-E1963BF88C0A"
},
{
"criteria": "cpe:2.3:a:netapp:ontap_select_deploy_administration_utility:-:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "E7CF3019-975D-40BB-A8A4-894E62BD3797"
},
{
"criteria": "cpe:2.3:a:netapp:ontap_tools:9:*:*:*:*:vmware_vsphere:*:*",
"vulnerable": true,
"matchCriteriaId": "C2D814BE-93EC-42EF-88C5-EA7E7DF07BE5"
},
{
"criteria": "cpe:2.3:a:netapp:solidfire:-:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A6E9EF0C-AFA8-4F7B-9FDC-1E0F7C26E737"
}
],
"operator": "OR"
}
]
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:mcafee:web_gateway:8.2.17:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D2039589-B543-49B6-AC5F-74C4253B416D"
},
{
"criteria": "cpe:2.3:a:mcafee:web_gateway:9.2.8:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "1E014E1E-0013-434F-9C59-178DAC089687"
},
{
"criteria": "cpe:2.3:a:mcafee:web_gateway:10.0.4:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "3CE836FD-3453-4277-BC18-A4868C183F42"
}
],
"operator": "OR"
}
]
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:synology:diskstation_manager:6.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "022A0BC6-2C70-406D-8D60-EC6F9F6A90CA"
},
{
"criteria": "cpe:2.3:a:synology:diskstation_manager_unified_controller:3.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "DA272C48-259B-4402-BB75-552B6983CD43"
}
],
"operator": "OR"
}
]
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:synology:skynas_firmware:-:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "53EF087B-D7E9-4F9A-803A-B0260C495C67"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:synology:skynas:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "D0A88A76-CF8A-4D29-B480-E5317219072D"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:synology:vs960hd_firmware:-:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "3D0C5120-B961-440F-B454-584BC54B549C"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:synology:vs960hd:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "1CCBDFF9-AF42-4681-879B-CF789EBAD130"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:beyondtrust:privilege_management_for_mac:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "38A18800-4BB0-46A1-BD9D-78EC7A07E7B9",
"versionEndExcluding": "21.1.1"
},
{
"criteria": "cpe:2.3:a:beyondtrust:privilege_management_for_unix\\/linux:*:*:*:*:basic:*:*:*",
"vulnerable": true,
"matchCriteriaId": "48DC5B58-0E31-480E-BF05-787287DFF42B",
"versionEndExcluding": "10.3.2-10"
}
],
"operator": "OR"
}
]
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:oracle:micros_compact_workstation_3_firmware:310:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "1CE3FF32-E472-4E90-9DE5-803AD6FD9E27"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:oracle:micros_compact_workstation_3:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "7DA4F0AD-B8A4-4EB9-A220-FEEC9B147D3C"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:oracle:micros_es400_firmware:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "9AA5297B-05DF-4A23-B684-60F2107339B0",
"versionEndIncluding": "410",
"versionStartIncluding": "400"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:oracle:micros_es400:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "A2BBD07A-4731-41D1-AB66-77082951D99C"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:oracle:micros_kitchen_display_system_firmware:210:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "57E6A365-F04F-4991-888F-D8E9391A9857"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:oracle:micros_kitchen_display_system:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "D1424AF8-9337-427B-B6FA-C5EB8B201FB7"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:oracle:micros_workstation_5a_firmware:5a:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "C78FDD3A-F241-4172-8725-7D51D8E705E7"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:oracle:micros_workstation_5a:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "F607BA3F-246F-42BE-9EBD-A2CAE098C0C2"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:oracle:micros_workstation_6_firmware:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D59535D6-8D64-4B8F-BC1B-5846600C9F81",
"versionEndIncluding": "655",
"versionStartIncluding": "610"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:oracle:micros_workstation_6:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "82A66154-5DF0-43FF-9F70-1221D3E6F919"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:oracle:communications_performance_intelligence_center:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "977CA754-6CE0-4FCB-9683-D81B7A15449D",
"versionEndIncluding": "10.3.0.2.1",
"versionStartIncluding": "10.3.0.0.0"
},
{
"criteria": "cpe:2.3:a:oracle:communications_performance_intelligence_center:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "29A3F7EF-2A69-427F-9F75-DDDBEE34BA2B",
"versionEndIncluding": "10.4.0.3.1",
"versionStartIncluding": "10.4.0.1.0"
},
{
"criteria": "cpe:2.3:a:oracle:tekelec_platform_distribution:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "26F05F85-7458-4C8F-B93F-93C92E506A40",
"versionEndIncluding": "7.7.1",
"versionStartIncluding": "7.4.0"
}
],
"operator": "OR"
}
]
}
]