CVE-2017-1000368

moderate-risk

Published 2017-06-05

Todd Miller's sudo version 1.8.20p1 and earlier is vulnerable to an input validation (embedded newlines) in the get_process_ttyname() function resulting in information disclosure and command execution.

Do I need to act?

0.17% chance of exploitation

EPSS score — low exploit probability

Not on CISA KEV list

No confirmed active exploitation reported to CISA

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 8.2/10 High

LOCAL / LOW complexity

Affected Products (2)

Sudo

Affected Vendors

Sudo Project

References (14)

Third Party Advisory http://www.securityfocus.com/bid/98838

Third Party Advisory https://access.redhat.com/errata/RHSA-2017:1574

Third Party Advisory https://kc.mcafee.com/corporate/index?page=content&id=SB10205

Third Party Advisory https://security.gentoo.org/glsa/201710-04

https://usn.ubuntu.com/3968-1/

https://usn.ubuntu.com/3968-2/

Vendor Advisory https://www.sudo.ws/alerts/linux_tty.html

Third Party Advisory http://www.securityfocus.com/bid/98838

Third Party Advisory https://access.redhat.com/errata/RHSA-2017:1574

Third Party Advisory https://kc.mcafee.com/corporate/index?page=content&id=SB10205

Third Party Advisory https://security.gentoo.org/glsa/201710-04

https://usn.ubuntu.com/3968-1/

https://usn.ubuntu.com/3968-2/

Vendor Advisory https://www.sudo.ws/alerts/linux_tty.html

/ 100

moderate-risk

Severity 25/34 · High

Exploitability 1/34 · Minimal

Exposure 7/34 · Low