Security Advisory Description
Sudo before 1.9.5p2 has a Heap-based Buffer Overflow, allowing privilege escalation to root via “sudoedit -s” and a command-line argument that ends with a single backslash character. (CVE-2021-3156)
Impact
A local attacker can exploit the vulnerability to escalate their privileges on a vulnerable system giving them access to read or modify sensitive information or cause a denial-of-service (DoS).
8.2 High
AI Score
Confidence
0.97 High
EPSS
Percentile
99.7%