Every CVE whose affected-product data names Todd Miller Sudo, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (29)
CVE-2005-1831 — CVSS 8.4 (high): Sudo 1.6.8p7 on SuSE Linux 9.3, and possibly other Linux distributions, allows local users to gain privileges by using sudo to call su…
CVE-2002-0043 — CVSS 7.2 (high): sudo 1.6.0 through 1.6.3p7 does not properly clear the environment before calling the mail program, which could allow local users to gain…
CVE-2004-1051 — CVSS 7.2 (high): sudo before 1.6.8p2 allows local users to execute arbitrary commands by using "()" style environment variables to create functions that…
CVE-2012-2337 — CVSS 7.2 (high): sudo 1.6.x and 1.7.x before 1.7.9p1, and 1.8.x before 1.8.4p5, does not properly support configurations that use a netmask syntax, which…
CVE-2012-0809 — CVSS 7.2 (high): Format string vulnerability in the sudo_debug function in Sudo 1.8.0 through 1.8.3p1 allows local users to execute arbitrary code via…
CVE-2006-0151 — CVSS 7.2 (high): sudo 1.6.8 and other versions does not clear the PYTHONINSPECT environment variable, which allows limited local users to gain privileges…
CVE-2007-3149 — CVSS 7.2 (high): sudo, when linked with MIT Kerberos 5 (krb5), does not properly check whether a user can currently authenticate to Kerberos, which allows…
CVE-2016-7032 — CVSS 7.0 (high): sudo_noexec.so in Sudo before 1.8.15 on Linux might allow local users to bypass intended noexec command restrictions via an application…
CVE-2011-0008 — CVSS 6.9 (medium): A certain Fedora patch for parse.c in sudo before 1.7.4p5-1.fc14 on Fedora 14 does not properly interpret a system group (aka %group) in…
CVE-2013-1775 — CVSS 6.9 (medium): sudo 1.6.0 through 1.7.10p6 and sudo 1.8.0 through 1.8.6p6 allows local users or physically proximate attackers to bypass intended time…
CVE-2010-0426 — CVSS 6.9 (medium): sudo 1.6.x before 1.6.9p21 and 1.7.x before 1.7.2p4, when a pseudo-command is enabled, permits a match between the name of the…
CVE-2010-1163 — CVSS 6.9 (medium): The command matching functionality in sudo 1.6.8 through 1.7.2p5 does not properly handle when a file in the current working directory has…
CVE-2014-0106 — CVSS 6.6 (medium): Sudo 1.6.9 before 1.8.5, when env_reset is disabled, does not properly check environment variables for the env_delete restriction, which…
CVE-2010-1646 — CVSS 6.2 (medium): The secure path feature in env.c in sudo 1.3.1 through 1.6.9p22 and 1.7.0 through 1.7.2p6 does not properly handle an environment that…
CVE-2010-2956 — CVSS 6.2 (medium): Sudo 1.7.0 through 1.7.4p3, when a Runas group is configured, does not properly handle use of the -u option in conjunction with the -g…
CVE-2007-4305 — CVSS 6.2 (medium): Multiple race conditions in the (1) Sudo monitor mode and (2) Sysjail policies in Systrace on NetBSD and OpenBSD allow local users to…
CVE-2012-3440 — CVSS 5.6 (medium): A certain Red Hat script for sudo 1.7.2 on Red Hat Enterprise Linux (RHEL) 5 allows local users to overwrite arbitrary files via a symlink…
CVE-2005-4158 — CVSS 4.6 (medium): Sudo before 1.6.8 p12, when the Perl taint flag is off, does not clear the (1) PERLLIB, (2) PERL5LIB, and (3) PERL5OPT environment…
CVE-2005-2959 — CVSS 4.6 (medium): Incomplete blacklist vulnerability in sudo 1.6.8 and earlier allows local users to gain privileges via the (1) SHELLOPTS and (2) PS4…
CVE-2011-0010 — CVSS 4.4 (medium): check.c in sudo 1.7.x before 1.7.4p5, when a Runas group is configured, does not require a password for command execution that involves a…
CVE-2010-0427 — CVSS 4.4 (medium): sudo 1.6.x before 1.6.9p21, when the runas_default option is used, does not properly set group memberships, which allows local users to…
CVE-2013-1776 — CVSS 4.4 (medium): sudo 1.3.5 through 1.7.10 and 1.8.0 through 1.8.5, when the tty_tickets option is enabled, does not properly validate the controlling…
CVE-2013-2776 — CVSS 4.4 (medium): sudo 1.3.5 through 1.7.10p5 and 1.8.0 through 1.8.6p6, when running on systems without /proc or the sysctl function with the tty_tickets…
CVE-2013-2777 — CVSS 4.4 (medium): sudo before 1.7.10p5 and 1.8.x before 1.8.6p6, when the tty_tickets option is enabled, does not properly validate the controlling terminal…
CVE-2005-1993 — CVSS 3.7 (low): Race condition in sudo 1.3.1 up to 1.6.8p8, when the ALL pseudo-command is used after a user entry in the sudoers file, allows local users…
CVE-2004-1689 — CVSS 2.1 (low): sudoedit (aka sudo -e) in sudo 1.6.8 opens a temporary file with root privileges, which allows local users to read arbitrary files via a…
CVE-2005-1119 — CVSS 2.1 (low): Sudo VISudo 1.6.8 and earlier allows local users to corrupt arbitrary files via a symlink attack on temporary files.
CVE-1999-1496 — CVSS 2.1 (low): Sudo 1.5 in Debian Linux 2.1 and Red Hat 6.0 allows local users to determine the existence of arbitrary files by attempting to execute the…