[Forgot Password]
Login  Register Subscribe

30389

 
 

423868

 
 

244411

 
 

909

 
 

193363

 
 

277

Paid content will be excluded from the download.


Download | Alert*
OVAL

Security policy bypass vulnerability in Sudo - CVE-2019-14287

ID: oval:org.secpod.oval:def:59044Date: (C)2019-10-15   (M)2023-12-20
Class: VULNERABILITYFamily: unix




A flaw was found in the way sudo implemented running commands with arbitrary user ID. If a sudoers entry is written to allow the attacker to run a command as any user except root, this flaw can be used by the attacker to bypass that restriction.

Platform:
CentOS 6
CentOS 7
Red Hat Enterprise Linux 6
Red Hat Enterprise Linux 7
Red Hat Enterprise Linux 8
Product:
sudo
Reference:
CVE-2019-14287
CVE    1
CVE-2019-14287
CPE    6
cpe:/o:redhat:enterprise_linux:7
cpe:/o:redhat:enterprise_linux:6
cpe:/o:redhat:enterprise_linux:8
cpe:/o:centos:centos:6
...

© SecPod Technologies