Sudo Vulnerability in Unix-like Systems by Sudo Developers
CVE-2019-14287

8.8HIGH

Key Information:

Vendor
Sudo Project
Status
Sudo
Vendor
CVE Published:
17 October 2019

Badges

👾 Exploit Exists🟡 Public PoC🟣 EPSS 84%

Summary

In Sudo versions prior to 1.8.28, a security flaw allows an attacker with access to a Runas ALL sudoer account to circumvent specified policy blacklists and session PAM modules. This vulnerability can lead to misleading logging and improper user privileges when the attacker invokes Sudo with a crafted user ID. Specifically, it enables a bypass of configurations intended to prevent unauthorized commands, such as the ability to gain root access or manipulate USER logging through the execution of malicious commands.

Exploit Proof of Concept (PoC)

PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.

CVE-2019-14287
Created by n0w4n

Dockerized-CVE-2019-14287
Created by CMNatic

sudo-cve-2019-14287
Created by FauxFaux

References

http://www.openwall.com/lists/oss-security/2019/10/14/1
mailing-listx_refsource_MLIST
https://usn.ubuntu.com/4154-1/
vendor-advisoryx_refsource_UBUNTU
https://www.debian.org/security/2019/dsa-4543
vendor-advisoryx_refsource_DEBIAN

EPSS Score

84% chance of being exploited in the next 30 days.

CVSS V3.1

Score:
8.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • 🟡

    Public PoC available

  • 👾

    Exploit known to exist

  • Vulnerability published

  • Vulnerability Reserved

.