CVE-2023-22809

Description from NVD

In Sudo before 1.9.12p2, the sudoedit (aka -e) feature mishandles extra arguments passed in the user-provided environment variables (SUDO_EDITOR, VISUAL, and EDITOR), allowing a local attacker to append arbitrary entries to the list of files to process. This can lead to privilege escalation. Affected versions are 1.8.0 through 1.9.12.p1. The problem exists because a user-specified editor may contain a "--" argument that defeats a protection mechanism, e.g., an EDITOR='vim -- /path/to/extra/file' value.

Information Acquisition Date:2023-01-23T14:55Z
CVSS 2.0: 0.0 None CVSS 3.x: 7.8 HIGH

NVD References

 https://www.synacktiv.com/sites/default/files/2023-01/sudo-CVE-2023-22809.pdf
     source:MISC
     tags:
 https://www.sudo.ws/security/advisories/sudoedit_any/
     source:CONFIRM
     tags:
 [debian-lts-announce] 20230118 [SECURITY] [DLA 3272-1] sudo security update
     source:MLIST
     tags:
 DSA-5321
     source:DEBIAN
     tags:
 [oss-security] 20230119 CVE-2023-22809: Sudoedit can edit arbitrary files
     source:MLIST
     tags:
 FEDORA-2023-9078f609e6
     source:FEDORA
     tags:

Refer to Information on External Sites

CVE InfomationExploits or more Infomation
mitreEXPLOIT DATABASE
NVD0day.today
vulmon.comgithub
CVE DetailsTwitter
JVN ENG JPN
Reconshell

Software Tag: Linux(10 tweets) PHP(1 tweets) Unix(1 tweets) iOS(8 tweets)



List of frequently cited URLs

URLNum of Times Referred to
https://alerts.vulmon.com/?utm_source=twitter&utm_medium=so...257
https://cvetrends.com51
https://www.sudo.ws/security/advisories/sudoedit_any11
https://seclists.org/oss-sec/2023/q1/429
https://www.synacktiv.com/sites/default/files/2023-01/sudo-...7
https://securityonline.info/cve-2023-22809-sudo-flaw-let-at...7
https://news.ycombinator.com/item?id=344456026
https://security.sios.jp/vulnerability/sudo-security-vulner...5
https://github.com/n3m1dotsys/CVE-2023-22809-sudoedit-privesc4
https://dev.to/nabbisen/sudoedit-sudo-e-nixi-rucui-ruo-xing...3

▼ Show Information from Twitter(140)


List of frequently cited URLs

URLNum of Times Referred to
alerts.vulmon.com257
cvetrends.com51
www.sudo.ws11
seclists.org9
www.synacktiv.com7
securityonline.info7
news.ycombinator.com6
security.sios.jp5
github.com4
dev.to3

▼ Show Information from Twitter(140)


GitHub Search Results: Up to 10
NameURL
n3m1dotsys/CVE-2023-22809-sudoedit-privesc https://github.com/n3m1dotsys/CVE-2023-22809-sudoedit-privesc
Live-Hack-CVE/CVE-2023-22809 https://github.com/Live-Hack-CVE/CVE-2023-22809

GitHub Search Results: Up to 10
NameURL
n3m1dotsys/CVE-2023-22809-sudoedit-privesc github.com
Live-Hack-CVE/CVE-2023-22809 github.com

2023/02/06 Score : 0
Added Har-sia Database : 2023/01/19
Last Modified : 2023/02/06
Highest Scored Date : 2023/01/19
Highest Score : 67