CVE-2022-29527

Name of the Vulnerable Software and Affected Versions amazon-ssm-agent versions prior to 3.1.1208.0

Description The issue is related to incorrect default permissions in the amazon-ssm-agent software. Exploitation of this issue can allow an attacker to create a file with arbitrary extension and elevate privileges to root. This occurs due to the creation of a world-writable sudoers file, which allows local attackers to inject Sudo rules and escalate privileges to root in certain situations involving a race condition.

Recommendations For versions prior to 3.1.1208.0, update to version 3.1.1208.0 or later to resolve the issue. As a temporary workaround, consider restricting access to the sudoers file to prevent local attackers from injecting Sudo rules.