7.8

CVE-2021-3156

Warnung
Exploit
Sudo before 1.9.5p2 contains an off-by-one error that can result in a heap-based buffer overflow, which allows privilege escalation to root via "sudoedit -s" and a command-line argument that ends with a single backslash character.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Sudo ProjectSudo Version >= 1.8.2 < 1.8.32
Sudo ProjectSudo Version >= 1.9.0 < 1.9.5
Sudo ProjectSudo Version1.9.5 Update-
Sudo ProjectSudo Version1.9.5 Updatepatch1
FedoraprojectFedora Version32
FedoraprojectFedora Version33
DebianDebian Linux Version9.0
DebianDebian Linux Version10.0
NetappActive Iq Unified Manager Version- SwPlatformvmware_vsphere
NetappCloud Backup Version-
NetappOntap Tools Version9 SwPlatformvmware_vsphere
NetappSolidfire Version-
McafeeWeb Gateway Version8.2.17
McafeeWeb Gateway Version9.2.8
McafeeWeb Gateway Version10.0.4
SynologyDiskstation Manager Version6.2
SynologySkynas Firmware Version-
   SynologySkynas Version-
SynologyVs960hd Firmware Version-
   SynologyVs960hd Version-
OracleMicros Es400 Firmware Version >= 400 <= 410
   OracleMicros Es400 Version-
OracleMicros Workstation 6 Firmware Version >= 610 <= 655
   OracleMicros Workstation 6 Version-
OracleCommunications Performance Intelligence Center Version >= 10.3.0.0.0 <= 10.3.0.2.1
OracleCommunications Performance Intelligence Center Version >= 10.4.0.1.0 <= 10.4.0.3.1
OracleTekelec Platform Distribution Version >= 7.4.0 <= 7.7.1

06.04.2022: CISA Known Exploited Vulnerabilities (KEV) Catalog

Sudo Heap-Based Buffer Overflow Vulnerability

Schwachstelle

Sudo contains an off-by-one error that can result in a heap-based buffer overflow, which allows for privilege escalation.

Beschreibung

Apply updates per vendor instructions.

Erforderliche Maßnahmen
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 99.3% 0.999
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 7.8 1.8 5.9
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
nvd@nist.gov 7.2 3.9 10
AV:L/AC:L/Au:N/C:C/I:C/A:C
134c704f-9b21-4f2e-91b3-4a467353bcc0 7.8 1.8 5.9
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
CWE-193 Off-by-one Error

A product calculates or uses an incorrect maximum or minimum value that is 1 more, or 1 less, than the correct value.

https://www.oracle.com/security-alerts/cpuapr2022.html
Patch
Third Party Advisory
https://www.oracle.com//security-alerts/cpujul2021.html
Patch
Third Party Advisory
https://www.oracle.com/security-alerts/cpuoct2021.html
Patch
Third Party Advisory
http://www.openwall.com/lists/oss-security/2021/09/14/2
Patch
Third Party Advisory
Mailing List
https://security.gentoo.org/glsa/202101-33
Third Party Advisory
http://packetstormsecurity.com/files/161160/Sudo-Heap-Based-Buffer-Overflow.html
Third Party Advisory
Exploit
VDB Entry
http://packetstormsecurity.com/files/161230/Sudo-Buffer-Overflow-Privilege-Escalation.html
Third Party Advisory
Exploit
VDB Entry
http://packetstormsecurity.com/files/161270/Sudo-1.9.5p1-Buffer-Overflow-Privilege-Escalation.html
Third Party Advisory
Exploit
VDB Entry
http://packetstormsecurity.com/files/161293/Sudo-1.8.31p2-1.9.5p1-Buffer-Overflow.html
Third Party Advisory
Exploit
VDB Entry
http://packetstormsecurity.com/files/176932/glibc-syslog-Heap-Based-Buffer-Overflow.html
Third Party Advisory
Exploit
VDB Entry
http://seclists.org/fulldisclosure/2021/Feb/42
Third Party Advisory
Mailing List
http://seclists.org/fulldisclosure/2021/Jan/79
Third Party Advisory
Exploit
Mailing List
http://seclists.org/fulldisclosure/2024/Feb/3
Third Party Advisory
Exploit
Mailing List
http://www.openwall.com/lists/oss-security/2021/01/26/3
Third Party Advisory
Exploit
Mailing List
http://www.openwall.com/lists/oss-security/2021/01/27/1
Third Party Advisory
Mailing List
http://www.openwall.com/lists/oss-security/2021/01/27/2
Third Party Advisory
Mailing List
http://www.openwall.com/lists/oss-security/2021/02/15/1
Third Party Advisory
Exploit
Mailing List
http://www.openwall.com/lists/oss-security/2024/01/30/6
Exploit
Mailing List
http://www.openwall.com/lists/oss-security/2024/01/30/8
Mailing List
https://kc.mcafee.com/corporate/index?page=content&id=SB10348
Third Party Advisory
Broken Link
https://lists.debian.org/debian-lts-announce/2021/01/msg00022.html
Third Party Advisory
Mailing List
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CALA5FTXIQBRRYUA2ZQNJXB6OQMAXEII/
Mailing List
Release Notes
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LHXK6ICO5AYLGFK2TAX5MZKUXTUKWOJY/
Mailing List
Release Notes
https://security.netapp.com/advisory/ntap-20210128-0001/
Third Party Advisory
https://security.netapp.com/advisory/ntap-20210128-0002/
Third Party Advisory
https://support.apple.com/kb/HT212177
Third Party Advisory
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sudo-privesc-jan2021-qnYQfcM
Third Party Advisory
https://www.beyondtrust.com/blog/entry/security-advisory-privilege-management-for-unix-linux-pmul-basic-and-privilege-management-for-mac-pmm-affected-by-sudo-vulnerability
Third Party Advisory
https://www.debian.org/security/2021/dsa-4839
Third Party Advisory
https://www.kb.cert.org/vuls/id/794544
Third Party Advisory
US Government Resource
https://www.openwall.com/lists/oss-security/2021/01/26/3
Third Party Advisory
Exploit
Mailing List
https://www.sudo.ws/stable.html#1.9.5p2
Release Notes
https://www.synology.com/security/advisory/Synology_SA_21_02
Third Party Advisory
https://www.vicarius.io/vsociety/posts/sudoedit-pwned-cve-2021-3156
Third Party Advisory
Exploit
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2021-3156
US Government Resource