PT-2021-15412 · Sudo+5 · Sudo+5

Published

2021-01-12

Updated

2024-06-15

CVE-2021-23240

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Sudo versions prior to 1.9.5

Description The issue allows a local unprivileged user to gain file ownership and escalate privileges by replacing a temporary file with a symlink to an arbitrary file target. This affects SELinux RBAC support in permissive mode. Machines without SELinux are not vulnerable.

Recommendations For versions prior to 1.9.5, update to version 1.9.5 or later to resolve the issue. As a temporary workaround, consider restricting the use of sudoedit to minimize the risk of exploitation.

Exploit

Fix

Link Following

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-59

Related Identifiers

ALT-PU-2021-1164

ALT-PU-2021-1174

ALT-PU-2021-1184

CESA-2021_1723

CVE-2021-23240

ELSA-2021-1723

MGASA-2021-0042

OESA-2021-1002

OPENSUSE-SU-2021:0169-1

OPENSUSE-SU-2021:0170-1

OPENSUSE-SU-2021_0169-1

OPENSUSE-SU-2021_0170-1

OPENSUSE-SU-2024:11413-1

RHSA-2021:1723

RHSA-2021_1723

RLSA-2021:1723

RLSA-2021_1723

SUSE-SU-2021:0225-1

SUSE-SU-2021:0226-1

SUSE-SU-2021:0227-1

Affected Products

Alt Linux

Centos

Red Hat

Rocky Linux

Sudo

Suse

PT-2021-15412 · Sudo+5 · Sudo+5

CVE-2021-23240

Weakness Enumeration

Related Identifiers

Affected Products

References · 96