PT-2024-6788 · Unknown+1 · Sudo For Windows+1

Michael Torres

Published

2024-10-08

Updated

2024-10-16

CVE-2024-43571

CVSS v3.1

7.3

High

Vector

AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Sudo for Windows (affected versions not specified)

Description The issue is related to a spoofing vulnerability in the system administration utility Sudo for Windows. It is caused by improper restriction of the communication channel for supposed endpoints. Exploitation of this issue may allow an attacker to conduct spoofing attacks.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-923

Related Identifiers

BDU:2024-08004

CVE-2024-43571

Affected Products

Sudo For Windows

Windows

PT-2024-6788 · Unknown+1 · Sudo For Windows+1

CVE-2024-43571

Weakness Enumeration

Related Identifiers

Affected Products

References · 9