Local Privilege Escalation Vulnerability in systemd by Vendor systemd
CVE-2023-26604

7.8HIGH

Key Information:

Vendor: Systemd Project
Status: Systemd
Vendor: CVE Published:; 3 March 2023

🔔 Create Systemd Project Vulnerability Alert

What is CVE-2023-26604?

A vulnerability in systemd versions prior to 247 could allow local privilege escalation due to inadequate handling of certain Sudo configurations. Specifically, when the 'systemctl status' command is executed with restrictive terminal sizes, the lesser program runs with elevated privileges, potentially leading to unauthorized access. The failure to set LESSSECURE to 1 means that attackers may exploit this flaw to gain root privileges through specific Sudoers file configurations.

References

https://medium.com/%40zenmoviefornotification/saidov-maxi...

https://github.com/systemd/systemd/blob/main/NEWS#L4335-L...

https://blog.compass-security.com/2012/10/dangerous-sudoe...

EPSS Score

5% chance of being exploited in the next 30 days.

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Mar 3, 2023
Vulnerability Reserved
Feb 26, 2023

CVE-2023-26604 Data

JSON