#VU74197 OS Command Injection in Sudo - CVE-2023-28487

Cybersecurity Help s.r.o.

Published: 2023-03-30

Vulnerability identifier: #VU74197

Vulnerability risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-28487

CWE-ID: CWE-78

Exploitation vector: Local

Exploit availability: No

Vulnerable software:
Sudo
Client/Desktop applications / Software for system administration

Vendor: Sudo

Description

The vulnerability allows a local user to execute arbitrary shell commands on the target system.

The vulnerability exists due to improper input validation when processing control characters in the sudoreplay output. A local user can inject specially crafted characters to the log messages and execute arbitrary OS commands on the system.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

Sudo: 1.9.0 - 1.9.12p2

External links
https://github.com/sudo-project/sudo/commit/334daf92b31b79ce68ed75e2ee14fca265f029ca
https://github.com/sudo-project/sudo/releases/tag/SUDO_1_9_13

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

Latest bulletins with this vulnerability

Dell RecoverPoint for Virtual Machines update for third-party components

Multiple vulnerabilities in IBM Integrated Analytics System

PowerProtect Data Protection software update for third-party components

Multiple vulnerabilities in Dell RecoverPoint for Virtual Machines

Multiple vulnerabilities in Dell ObjectScale

Amazon Linux AMI update for sudo

Multiple vulnerabilities in Red Hat Ceph Storage 5

Multiple vulnerabilities in Juniper Secure Analytics (JSA)

Multiple vulnerabilities in Dell SmartFabric OS10

Multiple vulnerabilities in Dell Enterprise SONiC Distribution