sudo vulnerabilities

Report a new vulnerability Found a mistake?

Direct Vulnerabilities

Known vulnerabilities in the sudo package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Fix for free

Vulnerability	Vulnerable Version
H Improper Privilege Management	<1.8.27-1+deb10u6
L CVE-2023-42465	*
M Improper Encoding or Escaping of Output	<1.8.27-1+deb10u6
M Improper Encoding or Escaping of Output	<1.8.27-1+deb10u6
H Improper Privilege Management	<1.8.27-1+deb10u5
L Out-of-bounds Read	*
H Off-by-one Error	<1.8.27-1+deb10u3
L Link Following	*
L Link Following	<1.8.27-1+deb10u4
H Out-of-bounds Write	<1.8.27-1+deb10u2
L CVE-2019-19234	*
L CVE-2019-19232	*
H Improper Handling of Exceptional Conditions	<1.8.27-1+deb10u1
L Improper Input Validation	<1.7.4p4
H Arbitrary Command Injection	<1.8.18p1-1
H Race Condition	<1.8.17p1-1
H Improper Input Validation	<1.8.19p1-2.1
M Race Condition	<1.8.19p1-2
L Information Exposure	<1.8.12-1
H Improper Access Control	<1.8.15-1
H Access Restriction Bypass	<1.8.15-1.1
L Improper Input Validation	<1.8.5p2-1
M Access Restriction Bypass	<1.8.5p2-1+nmu1
M Access Restriction Bypass	<1.8.5p2-1+nmu1
M Access Restriction Bypass	<1.8.5p2-1+nmu1
H Access Restriction Bypass	<1.8.5p2-1+nmu1
H Access Restriction Bypass	<1.8.3p2-1.1
H Use of Externally-Controlled Format String	<1.8.3p2-1
M Access Restriction Bypass	<1.7.4p4-6
H CVE-2010-2956	<1.7.4p4-1
H Access Restriction Bypass	<1.7.2p7-1
H Improper Input Validation	<1.7.2p6-1
M Access Restriction Bypass	<1.7.0-1
H Access Restriction Bypass	<1.7.2p1-1.2
M Access Restriction Bypass	<1.6.9p17-2
M Credentials Management	<1.6.9p12-1
M CVE-2006-0151	<1.6.8p12-1
M CVE-2005-4158	<1.6.8p12-1
M Access Restriction Bypass	<1.6.8p9-3
M CVE-2005-1993	<1.6.8p9-1
L CVE-2005-1119	*
H CVE-2004-1051	<1.6.8p3-1
M CVE-2004-1689	<1.6.8p3-1