CCE-95221-8| Platform: cpe:/o:apple:mac_os_11, cpe:/o:apple:mac_os_x:10.15 | Date: (C)2022-12-28 (M)2023-07-04 |
The sudo command lets the user run programs as the root user, granting them high levels of configurability within the system. The sudo command stays logged in as the root user for five minutes before timing out and re-requesting a password. This five-minute window should be eliminated since it leaves the system extremely vulnerable.
Fix:
echo "Defaults timestamp_timeout=0" >> /etc/sudoers
Parameter:
[0]
Technical Mechanism:
echo "Defaults timestamp_timeout=0" /etc/sudoers
| CCSS Severity: | CCSS Metrics: |
| CCSS Score : 8.4 | Attack Vector: LOCAL |
| Exploit Score: 2.5 | Attack Complexity: LOW |
| Impact Score: 5.9 | Privileges Required: NONE |
| Severity: HIGH | User Interaction: NONE |
| Vector: AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H | Scope: UNCHANGED |
| | Confidentiality: HIGH |
| | Integrity: HIGH |
| | Availability: HIGH |
| | |
References: | Resource Id | Reference |
|---|
| SCAP Repo OVAL Definition | oval:org.secpod.oval:def:71653 |
| SCAP Repo OVAL Definition | oval:org.secpod.oval:def:67462 |
