Django REST framework

Package Instance

Lookup for vulnerable packages by Package URL.

Purlpkg:deb/debian/sudo@1.8.27-1%2Bdeb10u3
Typedeb
Namespacedebian
Namesudo
Version1.8.27-1+deb10u3
Qualifiers
Subpath
Is_vulnerabletrue
Next_non_vulnerable_version1.9.17p2-5
Latest_non_vulnerable_version1.9.17p2-5
Affected_by_vulnerabilities
0
url VCID-1cuy-x9m9-p3c4
vulnerability_id VCID-1cuy-x9m9-p3c4
summary 
Multiple vulnerabilities have been found in sudo, the worst of
    which could result in privilege escalation.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3156.json
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3156.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2021-3156
reference_id
reference_type
scores
0
value 0.92309
scoring_system epss
scoring_elements 0.99722
published_at 2026-04-18T12:55:00Z
1
value 0.92309
scoring_system epss
scoring_elements 0.99721
published_at 2026-04-12T12:55:00Z
2
value 0.92309
scoring_system epss
scoring_elements 0.9972
published_at 2026-04-13T12:55:00Z
3
value 0.92483
scoring_system epss
scoring_elements 0.9973
published_at 2026-04-02T12:55:00Z
4
value 0.92483
scoring_system epss
scoring_elements 0.99733
published_at 2026-04-07T12:55:00Z
5
value 0.92483
scoring_system epss
scoring_elements 0.99732
published_at 2026-04-04T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2021-3156
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3156
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3156
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url http://www.openwall.com/lists/oss-security/2021/01/27/1
reference_id 1
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value Attend
scoring_system ssvc
scoring_elements SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-02-03T15:43:52Z/
url http://www.openwall.com/lists/oss-security/2021/01/27/1
5
reference_url http://www.openwall.com/lists/oss-security/2021/02/15/1
reference_id 1
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value Attend
scoring_system ssvc
scoring_elements SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-02-03T15:43:52Z/
url http://www.openwall.com/lists/oss-security/2021/02/15/1
6
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1917684
reference_id 1917684
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1917684
7
reference_url http://www.openwall.com/lists/oss-security/2021/01/27/2
reference_id 2
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value Attend
scoring_system ssvc
scoring_elements SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-02-03T15:43:52Z/
url http://www.openwall.com/lists/oss-security/2021/01/27/2
8
reference_url http://seclists.org/fulldisclosure/2024/Feb/3
reference_id 3
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value Attend
scoring_system ssvc
scoring_elements SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-02-03T15:43:52Z/
url http://seclists.org/fulldisclosure/2024/Feb/3
9
reference_url https://www.openwall.com/lists/oss-security/2021/01/26/3
reference_id 3
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value Attend
scoring_system ssvc
scoring_elements SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-02-03T15:43:52Z/
url https://www.openwall.com/lists/oss-security/2021/01/26/3
10
reference_url http://www.openwall.com/lists/oss-security/2021/01/26/3
reference_id 3
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value Attend
scoring_system ssvc
scoring_elements SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-02-03T15:43:52Z/
url http://www.openwall.com/lists/oss-security/2021/01/26/3
11
reference_url http://seclists.org/fulldisclosure/2021/Feb/42
reference_id 42
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value Attend
scoring_system ssvc
scoring_elements SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-02-03T15:43:52Z/
url http://seclists.org/fulldisclosure/2021/Feb/42
12
reference_url http://www.openwall.com/lists/oss-security/2024/01/30/6
reference_id 6
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value Attend
scoring_system ssvc
scoring_elements SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-02-03T15:43:52Z/
url http://www.openwall.com/lists/oss-security/2024/01/30/6
13
reference_url http://seclists.org/fulldisclosure/2021/Jan/79
reference_id 79
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value Attend
scoring_system ssvc
scoring_elements SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-02-03T15:43:52Z/
url http://seclists.org/fulldisclosure/2021/Jan/79
14
reference_url https://www.kb.cert.org/vuls/id/794544
reference_id 794544
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value Attend
scoring_system ssvc
scoring_elements SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-02-03T15:43:52Z/
url https://www.kb.cert.org/vuls/id/794544
15
reference_url http://www.openwall.com/lists/oss-security/2024/01/30/8
reference_id 8
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value Attend
scoring_system ssvc
scoring_elements SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-02-03T15:43:52Z/
url http://www.openwall.com/lists/oss-security/2024/01/30/8
16
reference_url https://security.archlinux.org/ASA-202101-25
reference_id ASA-202101-25
reference_type
scores
url https://security.archlinux.org/ASA-202101-25
17
reference_url https://security.archlinux.org/AVG-1431
reference_id AVG-1431
reference_type
scores
0
value Critical
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-1431
18
reference_url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CALA5FTXIQBRRYUA2ZQNJXB6OQMAXEII/
reference_id CALA5FTXIQBRRYUA2ZQNJXB6OQMAXEII
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value Attend
scoring_system ssvc
scoring_elements SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-02-03T15:43:52Z/
url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CALA5FTXIQBRRYUA2ZQNJXB6OQMAXEII/
19
reference_url https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sudo-privesc-jan2021-qnYQfcM
reference_id cisco-sa-sudo-privesc-jan2021-qnYQfcM
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value Attend
scoring_system ssvc
scoring_elements SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-02-03T15:43:52Z/
url https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sudo-privesc-jan2021-qnYQfcM
20
reference_url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/local/49521.py
reference_id CVE-2021-3156
reference_type exploit
scores
url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/local/49521.py
21
reference_url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/local/49522.c
reference_id CVE-2021-3156
reference_type exploit
scores
url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/local/49522.c
22
reference_url https://www.debian.org/security/2021/dsa-4839
reference_id dsa-4839
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value Attend
scoring_system ssvc
scoring_elements SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-02-03T15:43:52Z/
url https://www.debian.org/security/2021/dsa-4839
23
reference_url http://packetstormsecurity.com/files/176932/glibc-syslog-Heap-Based-Buffer-Overflow.html
reference_id glibc-syslog-Heap-Based-Buffer-Overflow.html
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value Attend
scoring_system ssvc
scoring_elements SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-02-03T15:43:52Z/
url http://packetstormsecurity.com/files/176932/glibc-syslog-Heap-Based-Buffer-Overflow.html
24
reference_url https://security.gentoo.org/glsa/202101-33
reference_id GLSA-202101-33
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value Attend
scoring_system ssvc
scoring_elements SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-02-03T15:43:52Z/
url https://security.gentoo.org/glsa/202101-33
25
reference_url https://support.apple.com/kb/HT212177
reference_id HT212177
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value Attend
scoring_system ssvc
scoring_elements SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-02-03T15:43:52Z/
url https://support.apple.com/kb/HT212177
26
reference_url https://kc.mcafee.com/corporate/index?page=content&id=SB10348
reference_id index?page=content&id=SB10348
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value Attend
scoring_system ssvc
scoring_elements SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-02-03T15:43:52Z/
url https://kc.mcafee.com/corporate/index?page=content&id=SB10348
27
reference_url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LHXK6ICO5AYLGFK2TAX5MZKUXTUKWOJY/
reference_id LHXK6ICO5AYLGFK2TAX5MZKUXTUKWOJY
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value Attend
scoring_system ssvc
scoring_elements SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-02-03T15:43:52Z/
url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LHXK6ICO5AYLGFK2TAX5MZKUXTUKWOJY/
28
reference_url https://lists.debian.org/debian-lts-announce/2021/01/msg00022.html
reference_id msg00022.html
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value Attend
scoring_system ssvc
scoring_elements SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-02-03T15:43:52Z/
url https://lists.debian.org/debian-lts-announce/2021/01/msg00022.html
29
reference_url https://security.netapp.com/advisory/ntap-20210128-0001/
reference_id ntap-20210128-0001
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value Attend
scoring_system ssvc
scoring_elements SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-02-03T15:43:52Z/
url https://security.netapp.com/advisory/ntap-20210128-0001/
30
reference_url https://security.netapp.com/advisory/ntap-20210128-0002/
reference_id ntap-20210128-0002
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value Attend
scoring_system ssvc
scoring_elements SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-02-03T15:43:52Z/
url https://security.netapp.com/advisory/ntap-20210128-0002/
31
reference_url https://access.redhat.com/errata/RHSA-2021:0218
reference_id RHSA-2021:0218
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0218
32
reference_url https://access.redhat.com/errata/RHSA-2021:0219
reference_id RHSA-2021:0219
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0219
33
reference_url https://access.redhat.com/errata/RHSA-2021:0220
reference_id RHSA-2021:0220
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0220
34
reference_url https://access.redhat.com/errata/RHSA-2021:0221
reference_id RHSA-2021:0221
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0221
35
reference_url https://access.redhat.com/errata/RHSA-2021:0222
reference_id RHSA-2021:0222
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0222
36
reference_url https://access.redhat.com/errata/RHSA-2021:0223
reference_id RHSA-2021:0223
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0223
37
reference_url https://access.redhat.com/errata/RHSA-2021:0224
reference_id RHSA-2021:0224
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0224
38
reference_url https://access.redhat.com/errata/RHSA-2021:0225
reference_id RHSA-2021:0225
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0225
39
reference_url https://access.redhat.com/errata/RHSA-2021:0226
reference_id RHSA-2021:0226
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0226
40
reference_url https://access.redhat.com/errata/RHSA-2021:0227
reference_id RHSA-2021:0227
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0227
41
reference_url https://access.redhat.com/errata/RHSA-2021:0395
reference_id RHSA-2021:0395
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0395
42
reference_url https://access.redhat.com/errata/RHSA-2021:0401
reference_id RHSA-2021:0401
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0401
43
reference_url https://www.beyondtrust.com/blog/entry/security-advisory-privilege-management-for-unix-linux-pmul-basic-and-privilege-management-for-mac-pmm-affected-by-sudo-vulnerability
reference_id security-advisory-privilege-management-for-unix-linux-pmul-basic-and-privilege-management-for-mac-pmm-affected-by-sudo-vulnerability
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value Attend
scoring_system ssvc
scoring_elements SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-02-03T15:43:52Z/
url https://www.beyondtrust.com/blog/entry/security-advisory-privilege-management-for-unix-linux-pmul-basic-and-privilege-management-for-mac-pmm-affected-by-sudo-vulnerability
44
reference_url https://www.sudo.ws/stable.html#1.9.5p2
reference_id stable.html#1.9.5p2
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value Attend
scoring_system ssvc
scoring_elements SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-02-03T15:43:52Z/
url https://www.sudo.ws/stable.html#1.9.5p2
45
reference_url http://packetstormsecurity.com/files/161293/Sudo-1.8.31p2-1.9.5p1-Buffer-Overflow.html
reference_id Sudo-1.8.31p2-1.9.5p1-Buffer-Overflow.html
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value Attend
scoring_system ssvc
scoring_elements SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-02-03T15:43:52Z/
url http://packetstormsecurity.com/files/161293/Sudo-1.8.31p2-1.9.5p1-Buffer-Overflow.html
46
reference_url http://packetstormsecurity.com/files/161270/Sudo-1.9.5p1-Buffer-Overflow-Privilege-Escalation.html
reference_id Sudo-1.9.5p1-Buffer-Overflow-Privilege-Escalation.html
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value Attend
scoring_system ssvc
scoring_elements SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-02-03T15:43:52Z/
url http://packetstormsecurity.com/files/161270/Sudo-1.9.5p1-Buffer-Overflow-Privilege-Escalation.html
47
reference_url http://packetstormsecurity.com/files/161230/Sudo-Buffer-Overflow-Privilege-Escalation.html
reference_id Sudo-Buffer-Overflow-Privilege-Escalation.html
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value Attend
scoring_system ssvc
scoring_elements SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-02-03T15:43:52Z/
url http://packetstormsecurity.com/files/161230/Sudo-Buffer-Overflow-Privilege-Escalation.html
48
reference_url https://www.vicarius.io/vsociety/posts/sudoedit-pwned-cve-2021-3156
reference_id sudoedit-pwned-cve-2021-3156
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value Attend
scoring_system ssvc
scoring_elements SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-02-03T15:43:52Z/
url https://www.vicarius.io/vsociety/posts/sudoedit-pwned-cve-2021-3156
49
reference_url http://packetstormsecurity.com/files/161160/Sudo-Heap-Based-Buffer-Overflow.html
reference_id Sudo-Heap-Based-Buffer-Overflow.html
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value Attend
scoring_system ssvc
scoring_elements SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-02-03T15:43:52Z/
url http://packetstormsecurity.com/files/161160/Sudo-Heap-Based-Buffer-Overflow.html
50
reference_url https://www.synology.com/security/advisory/Synology_SA_21_02
reference_id Synology_SA_21_02
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value Attend
scoring_system ssvc
scoring_elements SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-02-03T15:43:52Z/
url https://www.synology.com/security/advisory/Synology_SA_21_02
51
reference_url https://usn.ubuntu.com/4705-1/
reference_id USN-4705-1
reference_type
scores
url https://usn.ubuntu.com/4705-1/
52
reference_url https://usn.ubuntu.com/4705-2/
reference_id USN-4705-2
reference_type
scores
url https://usn.ubuntu.com/4705-2/
fixed_packages
0
url pkg:deb/debian/sudo@1.9.5p2-3%2Bdeb11u1
purl pkg:deb/debian/sudo@1.9.5p2-3%2Bdeb11u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3hfe-p6e3-tbe9
1
vulnerability VCID-e9ra-cfnz-m3hg
2
vulnerability VCID-ethj-8jmj-5fdh
3
vulnerability VCID-m9xh-9ac2-eycq
4
vulnerability VCID-ngg5-bqw7-bbc4
5
vulnerability VCID-pwmy-f5qe-s3d1
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/sudo@1.9.5p2-3%252Bdeb11u1
aliases CVE-2021-3156
risk_score 10.0
exploitability 2.0
weighted_severity 9.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-1cuy-x9m9-p3c4
1
url VCID-3hfe-p6e3-tbe9
vulnerability_id VCID-3hfe-p6e3-tbe9
summary Multiple vulnerabilities have been found in sudo, the worst of which can result in root privilege escalation.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-28487.json
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-28487.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2023-28487
reference_id
reference_type
scores
0
value 0.00108
scoring_system epss
scoring_elements 0.29098
published_at 2026-04-02T12:55:00Z
1
value 0.00136
scoring_system epss
scoring_elements 0.333
published_at 2026-04-07T12:55:00Z
2
value 0.00136
scoring_system epss
scoring_elements 0.33344
published_at 2026-04-08T12:55:00Z
3
value 0.00136
scoring_system epss
scoring_elements 0.33378
published_at 2026-04-09T12:55:00Z
4
value 0.00136
scoring_system epss
scoring_elements 0.33381
published_at 2026-04-11T12:55:00Z
5
value 0.00136
scoring_system epss
scoring_elements 0.33339
published_at 2026-04-12T12:55:00Z
6
value 0.00136
scoring_system epss
scoring_elements 0.33316
published_at 2026-04-13T12:55:00Z
7
value 0.00136
scoring_system epss
scoring_elements 0.33356
published_at 2026-04-16T12:55:00Z
8
value 0.00136
scoring_system epss
scoring_elements 0.33332
published_at 2026-04-18T12:55:00Z
9
value 0.00136
scoring_system epss
scoring_elements 0.33462
published_at 2026-04-04T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2023-28487
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-28487
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-28487
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2179273
reference_id 2179273
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2179273
5
reference_url https://security.gentoo.org/glsa/202309-12
reference_id GLSA-202309-12
reference_type
scores
url https://security.gentoo.org/glsa/202309-12
6
reference_url https://access.redhat.com/errata/RHSA-2024:0811
reference_id RHSA-2024:0811
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:0811
7
reference_url https://access.redhat.com/errata/RHSA-2024:1383
reference_id RHSA-2024:1383
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:1383
8
reference_url https://usn.ubuntu.com/6005-1/
reference_id USN-6005-1
reference_type
scores
url https://usn.ubuntu.com/6005-1/
9
reference_url https://usn.ubuntu.com/6005-2/
reference_id USN-6005-2
reference_type
scores
url https://usn.ubuntu.com/6005-2/
fixed_packages
0
url pkg:deb/debian/sudo@1.9.13p3-1%2Bdeb12u3
purl pkg:deb/debian/sudo@1.9.13p3-1%2Bdeb12u3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-m9xh-9ac2-eycq
1
vulnerability VCID-pwmy-f5qe-s3d1
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/sudo@1.9.13p3-1%252Bdeb12u3
aliases CVE-2023-28487
risk_score 2.4
exploitability 0.5
weighted_severity 4.8
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-3hfe-p6e3-tbe9
2
url VCID-7w9w-4whw-9bgk
vulnerability_id VCID-7w9w-4whw-9bgk
summary 
Multiple vulnerabilities have been found in sudo, the worst of
    which could result in privilege escalation.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-23240.json
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-23240.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2021-23240
reference_id
reference_type
scores
0
value 0.00225
scoring_system epss
scoring_elements 0.45118
published_at 2026-04-01T12:55:00Z
1
value 0.00225
scoring_system epss
scoring_elements 0.45254
published_at 2026-04-18T12:55:00Z
2
value 0.00225
scoring_system epss
scoring_elements 0.45208
published_at 2026-04-13T12:55:00Z
3
value 0.00225
scoring_system epss
scoring_elements 0.4526
published_at 2026-04-16T12:55:00Z
4
value 0.00225
scoring_system epss
scoring_elements 0.45199
published_at 2026-04-02T12:55:00Z
5
value 0.00225
scoring_system epss
scoring_elements 0.45222
published_at 2026-04-04T12:55:00Z
6
value 0.00225
scoring_system epss
scoring_elements 0.45164
published_at 2026-04-07T12:55:00Z
7
value 0.00225
scoring_system epss
scoring_elements 0.45218
published_at 2026-04-09T12:55:00Z
8
value 0.00225
scoring_system epss
scoring_elements 0.45239
published_at 2026-04-11T12:55:00Z
9
value 0.00225
scoring_system epss
scoring_elements 0.45206
published_at 2026-04-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2021-23240
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23240
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23240
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1915053
reference_id 1915053
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1915053
5
reference_url https://security.archlinux.org/AVG-1432
reference_id AVG-1432
reference_type
scores
0
value High
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-1432
6
reference_url https://security.gentoo.org/glsa/202101-33
reference_id GLSA-202101-33
reference_type
scores
url https://security.gentoo.org/glsa/202101-33
7
reference_url https://access.redhat.com/errata/RHSA-2021:1723
reference_id RHSA-2021:1723
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:1723
fixed_packages
0
url pkg:deb/debian/sudo@1.9.5p2-3%2Bdeb11u1
purl pkg:deb/debian/sudo@1.9.5p2-3%2Bdeb11u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3hfe-p6e3-tbe9
1
vulnerability VCID-e9ra-cfnz-m3hg
2
vulnerability VCID-ethj-8jmj-5fdh
3
vulnerability VCID-m9xh-9ac2-eycq
4
vulnerability VCID-ngg5-bqw7-bbc4
5
vulnerability VCID-pwmy-f5qe-s3d1
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/sudo@1.9.5p2-3%252Bdeb11u1
aliases CVE-2021-23240
risk_score 4.0
exploitability 0.5
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-7w9w-4whw-9bgk
3
url VCID-9fh6-mr57-wba8
vulnerability_id VCID-9fh6-mr57-wba8
summary sudo: Improper handling of ipa_hostname leads to privilege mismanagement
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-7090.json
reference_id
reference_type
scores
0
value 6.6
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:L/I:L/A:L
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-7090.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2023-7090
reference_id
reference_type
scores
0
value 0.00082
scoring_system epss
scoring_elements 0.24216
published_at 2026-04-02T12:55:00Z
1
value 0.00082
scoring_system epss
scoring_elements 0.24252
published_at 2026-04-04T12:55:00Z
2
value 0.00082
scoring_system epss
scoring_elements 0.24037
published_at 2026-04-07T12:55:00Z
3
value 0.00082
scoring_system epss
scoring_elements 0.24105
published_at 2026-04-08T12:55:00Z
4
value 0.00082
scoring_system epss
scoring_elements 0.24151
published_at 2026-04-09T12:55:00Z
5
value 0.00082
scoring_system epss
scoring_elements 0.24169
published_at 2026-04-11T12:55:00Z
6
value 0.00082
scoring_system epss
scoring_elements 0.24127
published_at 2026-04-12T12:55:00Z
7
value 0.00082
scoring_system epss
scoring_elements 0.2407
published_at 2026-04-18T12:55:00Z
8
value 0.00082
scoring_system epss
scoring_elements 0.24083
published_at 2026-04-16T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2023-7090
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-7090
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-7090
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.7
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2255723
reference_id 2255723
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2255723
fixed_packages
0
url pkg:deb/debian/sudo@1.9.5p2-3%2Bdeb11u1
purl pkg:deb/debian/sudo@1.9.5p2-3%2Bdeb11u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3hfe-p6e3-tbe9
1
vulnerability VCID-e9ra-cfnz-m3hg
2
vulnerability VCID-ethj-8jmj-5fdh
3
vulnerability VCID-m9xh-9ac2-eycq
4
vulnerability VCID-ngg5-bqw7-bbc4
5
vulnerability VCID-pwmy-f5qe-s3d1
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/sudo@1.9.5p2-3%252Bdeb11u1
aliases CVE-2023-7090
risk_score 3.0
exploitability 0.5
weighted_severity 5.9
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-9fh6-mr57-wba8
4
url VCID-enw3-mnnx-myd5
vulnerability_id VCID-enw3-mnnx-myd5
summary A vulnerability has been discovered in sudo which could result in root privilege escalation.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-22809.json
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-22809.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2023-22809
reference_id
reference_type
scores
0
value 0.48016
scoring_system epss
scoring_elements 0.97709
published_at 2026-04-07T12:55:00Z
1
value 0.48016
scoring_system epss
scoring_elements 0.97731
published_at 2026-04-18T12:55:00Z
2
value 0.48016
scoring_system epss
scoring_elements 0.97728
published_at 2026-04-16T12:55:00Z
3
value 0.48016
scoring_system epss
scoring_elements 0.97723
published_at 2026-04-13T12:55:00Z
4
value 0.48016
scoring_system epss
scoring_elements 0.97722
published_at 2026-04-12T12:55:00Z
5
value 0.48016
scoring_system epss
scoring_elements 0.97719
published_at 2026-04-11T12:55:00Z
6
value 0.48016
scoring_system epss
scoring_elements 0.97717
published_at 2026-04-09T12:55:00Z
7
value 0.48016
scoring_system epss
scoring_elements 0.97713
published_at 2026-04-08T12:55:00Z
8
value 0.5353
scoring_system epss
scoring_elements 0.97974
published_at 2026-04-04T12:55:00Z
9
value 0.54539
scoring_system epss
scoring_elements 0.98017
published_at 2026-04-02T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2023-22809
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-22809
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-22809
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url http://www.openwall.com/lists/oss-security/2023/01/19/1
reference_id 1
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-04T15:43:57Z/
url http://www.openwall.com/lists/oss-security/2023/01/19/1
5
reference_url http://seclists.org/fulldisclosure/2023/Aug/21
reference_id 21
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-04T15:43:57Z/
url http://seclists.org/fulldisclosure/2023/Aug/21
6
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2161142
reference_id 2161142
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2161142
7
reference_url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2QDGFCGAV5QRJCE6IXRXIS4XJHS57DDH/
reference_id 2QDGFCGAV5QRJCE6IXRXIS4XJHS57DDH
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-04T15:43:57Z/
url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2QDGFCGAV5QRJCE6IXRXIS4XJHS57DDH/
8
reference_url http://packetstormsecurity.com/files/174234/Cisco-ThousandEyes-Enterprise-Agent-Virtual-Appliance-Arbitrary-File-Modification.html
reference_id Cisco-ThousandEyes-Enterprise-Agent-Virtual-Appliance-Arbitrary-File-Modification.html
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-04T15:43:57Z/
url http://packetstormsecurity.com/files/174234/Cisco-ThousandEyes-Enterprise-Agent-Virtual-Appliance-Arbitrary-File-Modification.html
9
reference_url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/local/51217.sh
reference_id CVE-2023-22809
reference_type exploit
scores
url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/local/51217.sh
10
reference_url https://www.debian.org/security/2023/dsa-5321
reference_id dsa-5321
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-04T15:43:57Z/
url https://www.debian.org/security/2023/dsa-5321
11
reference_url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/G4YNBTTKTRT2ME3NTSXAPTOKYUE47XHZ/
reference_id G4YNBTTKTRT2ME3NTSXAPTOKYUE47XHZ
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-04T15:43:57Z/
url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/G4YNBTTKTRT2ME3NTSXAPTOKYUE47XHZ/
12
reference_url https://security.gentoo.org/glsa/202305-12
reference_id GLSA-202305-12
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-04T15:43:57Z/
url https://security.gentoo.org/glsa/202305-12
13
reference_url https://support.apple.com/kb/HT213758
reference_id HT213758
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-04T15:43:57Z/
url https://support.apple.com/kb/HT213758
14
reference_url https://lists.debian.org/debian-lts-announce/2023/01/msg00012.html
reference_id msg00012.html
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-04T15:43:57Z/
url https://lists.debian.org/debian-lts-announce/2023/01/msg00012.html
15
reference_url https://security.netapp.com/advisory/ntap-20230127-0015/
reference_id ntap-20230127-0015
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-04T15:43:57Z/
url https://security.netapp.com/advisory/ntap-20230127-0015/
16
reference_url https://access.redhat.com/errata/RHSA-2023:0280
reference_id RHSA-2023:0280
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:0280
17
reference_url https://access.redhat.com/errata/RHSA-2023:0281
reference_id RHSA-2023:0281
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:0281
18
reference_url https://access.redhat.com/errata/RHSA-2023:0282
reference_id RHSA-2023:0282
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:0282
19
reference_url https://access.redhat.com/errata/RHSA-2023:0283
reference_id RHSA-2023:0283
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:0283
20
reference_url https://access.redhat.com/errata/RHSA-2023:0284
reference_id RHSA-2023:0284
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:0284
21
reference_url https://access.redhat.com/errata/RHSA-2023:0287
reference_id RHSA-2023:0287
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:0287
22
reference_url https://access.redhat.com/errata/RHSA-2023:0291
reference_id RHSA-2023:0291
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:0291
23
reference_url https://access.redhat.com/errata/RHSA-2023:0292
reference_id RHSA-2023:0292
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:0292
24
reference_url https://access.redhat.com/errata/RHSA-2023:0293
reference_id RHSA-2023:0293
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:0293
25
reference_url https://access.redhat.com/errata/RHSA-2023:0859
reference_id RHSA-2023:0859
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:0859
26
reference_url https://access.redhat.com/errata/RHSA-2023:3262
reference_id RHSA-2023:3262
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:3262
27
reference_url https://access.redhat.com/errata/RHSA-2023:3264
reference_id RHSA-2023:3264
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:3264
28
reference_url https://access.redhat.com/errata/RHSA-2023:3276
reference_id RHSA-2023:3276
reference_type
scores
url https://access.redhat.com/errata/RHSA-2023:3276
29
reference_url http://packetstormsecurity.com/files/171644/sudo-1.9.12p1-Privilege-Escalation.html
reference_id sudo-1.9.12p1-Privilege-Escalation.html
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-04T15:43:57Z/
url http://packetstormsecurity.com/files/171644/sudo-1.9.12p1-Privilege-Escalation.html
30
reference_url https://www.synacktiv.com/sites/default/files/2023-01/sudo-CVE-2023-22809.pdf
reference_id sudo-CVE-2023-22809.pdf
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-04T15:43:57Z/
url https://www.synacktiv.com/sites/default/files/2023-01/sudo-CVE-2023-22809.pdf
31
reference_url https://www.sudo.ws/security/advisories/sudoedit_any/
reference_id sudoedit_any
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-04T15:43:57Z/
url https://www.sudo.ws/security/advisories/sudoedit_any/
32
reference_url http://packetstormsecurity.com/files/172509/Sudoedit-Extra-Arguments-Privilege-Escalation.html
reference_id Sudoedit-Extra-Arguments-Privilege-Escalation.html
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-04-04T15:43:57Z/
url http://packetstormsecurity.com/files/172509/Sudoedit-Extra-Arguments-Privilege-Escalation.html
33
reference_url https://usn.ubuntu.com/5811-1/
reference_id USN-5811-1
reference_type
scores
url https://usn.ubuntu.com/5811-1/
34
reference_url https://usn.ubuntu.com/5811-2/
reference_id USN-5811-2
reference_type
scores
url https://usn.ubuntu.com/5811-2/
35
reference_url https://usn.ubuntu.com/5811-3/
reference_id USN-5811-3
reference_type
scores
url https://usn.ubuntu.com/5811-3/
fixed_packages
0
url pkg:deb/debian/sudo@1.9.5p2-3%2Bdeb11u1
purl pkg:deb/debian/sudo@1.9.5p2-3%2Bdeb11u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3hfe-p6e3-tbe9
1
vulnerability VCID-e9ra-cfnz-m3hg
2
vulnerability VCID-ethj-8jmj-5fdh
3
vulnerability VCID-m9xh-9ac2-eycq
4
vulnerability VCID-ngg5-bqw7-bbc4
5
vulnerability VCID-pwmy-f5qe-s3d1
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/sudo@1.9.5p2-3%252Bdeb11u1
aliases CVE-2023-22809
risk_score 10.0
exploitability 2.0
weighted_severity 7.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-enw3-mnnx-myd5
5
url VCID-esf1-4zw7-5fcy
vulnerability_id VCID-esf1-4zw7-5fcy
summary sudo: attacker with access to a Runas ALL sudoer account can impersonate a nonexistent user
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-19232.json
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-19232.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2019-19232
reference_id
reference_type
scores
0
value 0.02868
scoring_system epss
scoring_elements 0.862
published_at 2026-04-01T12:55:00Z
1
value 0.02868
scoring_system epss
scoring_elements 0.8621
published_at 2026-04-02T12:55:00Z
2
value 0.02868
scoring_system epss
scoring_elements 0.86224
published_at 2026-04-07T12:55:00Z
3
value 0.02868
scoring_system epss
scoring_elements 0.86243
published_at 2026-04-08T12:55:00Z
4
value 0.02868
scoring_system epss
scoring_elements 0.86254
published_at 2026-04-09T12:55:00Z
5
value 0.02868
scoring_system epss
scoring_elements 0.86268
published_at 2026-04-11T12:55:00Z
6
value 0.02868
scoring_system epss
scoring_elements 0.86266
published_at 2026-04-12T12:55:00Z
7
value 0.02868
scoring_system epss
scoring_elements 0.86262
published_at 2026-04-13T12:55:00Z
8
value 0.02868
scoring_system epss
scoring_elements 0.86277
published_at 2026-04-16T12:55:00Z
9
value 0.02868
scoring_system epss
scoring_elements 0.86282
published_at 2026-04-18T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2019-19232
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19232
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19232
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 6.7
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1786704
reference_id 1786704
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1786704
5
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=947225
reference_id 947225
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=947225
6
reference_url https://access.redhat.com/errata/RHSA-2020:1804
reference_id RHSA-2020:1804
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:1804
fixed_packages
0
url pkg:deb/debian/sudo@1.9.5p2-3%2Bdeb11u1
purl pkg:deb/debian/sudo@1.9.5p2-3%2Bdeb11u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3hfe-p6e3-tbe9
1
vulnerability VCID-e9ra-cfnz-m3hg
2
vulnerability VCID-ethj-8jmj-5fdh
3
vulnerability VCID-m9xh-9ac2-eycq
4
vulnerability VCID-ngg5-bqw7-bbc4
5
vulnerability VCID-pwmy-f5qe-s3d1
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/sudo@1.9.5p2-3%252Bdeb11u1
aliases CVE-2019-19232
risk_score 3.4
exploitability 0.5
weighted_severity 6.8
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-esf1-4zw7-5fcy
6
url VCID-ethj-8jmj-5fdh
vulnerability_id VCID-ethj-8jmj-5fdh
summary Multiple vulnerabilities have been found in sudo, the worst of which can result in root privilege escalation.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-28486.json
reference_id
reference_type
scores
0
value 5.3
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-28486.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2023-28486
reference_id
reference_type
scores
0
value 0.00108
scoring_system epss
scoring_elements 0.29098
published_at 2026-04-02T12:55:00Z
1
value 0.00136
scoring_system epss
scoring_elements 0.333
published_at 2026-04-07T12:55:00Z
2
value 0.00136
scoring_system epss
scoring_elements 0.33344
published_at 2026-04-08T12:55:00Z
3
value 0.00136
scoring_system epss
scoring_elements 0.33378
published_at 2026-04-09T12:55:00Z
4
value 0.00136
scoring_system epss
scoring_elements 0.33381
published_at 2026-04-11T12:55:00Z
5
value 0.00136
scoring_system epss
scoring_elements 0.33339
published_at 2026-04-12T12:55:00Z
6
value 0.00136
scoring_system epss
scoring_elements 0.33316
published_at 2026-04-13T12:55:00Z
7
value 0.00136
scoring_system epss
scoring_elements 0.33356
published_at 2026-04-16T12:55:00Z
8
value 0.00136
scoring_system epss
scoring_elements 0.33332
published_at 2026-04-18T12:55:00Z
9
value 0.00136
scoring_system epss
scoring_elements 0.33462
published_at 2026-04-04T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2023-28486
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-28486
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-28486
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 5.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2179272
reference_id 2179272
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2179272
5
reference_url https://security.gentoo.org/glsa/202309-12
reference_id GLSA-202309-12
reference_type
scores
url https://security.gentoo.org/glsa/202309-12
6
reference_url https://access.redhat.com/errata/RHSA-2024:0811
reference_id RHSA-2024:0811
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:0811
7
reference_url https://access.redhat.com/errata/RHSA-2024:1383
reference_id RHSA-2024:1383
reference_type
scores
url https://access.redhat.com/errata/RHSA-2024:1383
8
reference_url https://usn.ubuntu.com/6005-1/
reference_id USN-6005-1
reference_type
scores
url https://usn.ubuntu.com/6005-1/
9
reference_url https://usn.ubuntu.com/6005-2/
reference_id USN-6005-2
reference_type
scores
url https://usn.ubuntu.com/6005-2/
fixed_packages
0
url pkg:deb/debian/sudo@1.9.13p3-1%2Bdeb12u3
purl pkg:deb/debian/sudo@1.9.13p3-1%2Bdeb12u3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-m9xh-9ac2-eycq
1
vulnerability VCID-pwmy-f5qe-s3d1
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/sudo@1.9.13p3-1%252Bdeb12u3
aliases CVE-2023-28486
risk_score 2.4
exploitability 0.5
weighted_severity 4.8
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ethj-8jmj-5fdh
7
url VCID-k42r-mk4h-mbbg
vulnerability_id VCID-k42r-mk4h-mbbg
summary 
Multiple vulnerabilities have been found in sudo, the worst of
    which could result in privilege escalation.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-23239.json
reference_id
reference_type
scores
0
value 2.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-23239.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2021-23239
reference_id
reference_type
scores
0
value 0.00153
scoring_system epss
scoring_elements 0.35875
published_at 2026-04-01T12:55:00Z
1
value 0.00153
scoring_system epss
scoring_elements 0.35971
published_at 2026-04-18T12:55:00Z
2
value 0.00153
scoring_system epss
scoring_elements 0.35945
published_at 2026-04-13T12:55:00Z
3
value 0.00153
scoring_system epss
scoring_elements 0.35985
published_at 2026-04-16T12:55:00Z
4
value 0.00153
scoring_system epss
scoring_elements 0.36066
published_at 2026-04-02T12:55:00Z
5
value 0.00153
scoring_system epss
scoring_elements 0.36095
published_at 2026-04-04T12:55:00Z
6
value 0.00153
scoring_system epss
scoring_elements 0.3593
published_at 2026-04-07T12:55:00Z
7
value 0.00153
scoring_system epss
scoring_elements 0.35979
published_at 2026-04-08T12:55:00Z
8
value 0.00153
scoring_system epss
scoring_elements 0.36002
published_at 2026-04-09T12:55:00Z
9
value 0.00153
scoring_system epss
scoring_elements 0.36008
published_at 2026-04-11T12:55:00Z
10
value 0.00153
scoring_system epss
scoring_elements 0.3597
published_at 2026-04-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2021-23239
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23239
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23239
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 2.5
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1915052
reference_id 1915052
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1915052
5
reference_url https://security.archlinux.org/ASA-202101-25
reference_id ASA-202101-25
reference_type
scores
url https://security.archlinux.org/ASA-202101-25
6
reference_url https://security.archlinux.org/AVG-1431
reference_id AVG-1431
reference_type
scores
0
value Critical
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-1431
7
reference_url https://security.gentoo.org/glsa/202101-33
reference_id GLSA-202101-33
reference_type
scores
url https://security.gentoo.org/glsa/202101-33
8
reference_url https://access.redhat.com/errata/RHSA-2021:1723
reference_id RHSA-2021:1723
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:1723
9
reference_url https://usn.ubuntu.com/4705-1/
reference_id USN-4705-1
reference_type
scores
url https://usn.ubuntu.com/4705-1/
fixed_packages
0
url pkg:deb/debian/sudo@1.9.5p2-3%2Bdeb11u1
purl pkg:deb/debian/sudo@1.9.5p2-3%2Bdeb11u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3hfe-p6e3-tbe9
1
vulnerability VCID-e9ra-cfnz-m3hg
2
vulnerability VCID-ethj-8jmj-5fdh
3
vulnerability VCID-m9xh-9ac2-eycq
4
vulnerability VCID-ngg5-bqw7-bbc4
5
vulnerability VCID-pwmy-f5qe-s3d1
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/sudo@1.9.5p2-3%252Bdeb11u1
aliases CVE-2021-23239
risk_score 4.5
exploitability 0.5
weighted_severity 9.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-k42r-mk4h-mbbg
8
url VCID-ngg5-bqw7-bbc4
vulnerability_id VCID-ngg5-bqw7-bbc4
summary Multiple vulnerabilities have been discovered in sudo, the worst of which could result in privilege escalation.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-32462.json
reference_id
reference_type
scores
0
value 7.0
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-32462.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2025-32462
reference_id
reference_type
scores
0
value 0.21724
scoring_system epss
scoring_elements 0.95757
published_at 2026-04-18T12:55:00Z
1
value 0.21724
scoring_system epss
scoring_elements 0.95716
published_at 2026-04-02T12:55:00Z
2
value 0.21724
scoring_system epss
scoring_elements 0.95723
published_at 2026-04-04T12:55:00Z
3
value 0.21724
scoring_system epss
scoring_elements 0.95727
published_at 2026-04-07T12:55:00Z
4
value 0.21724
scoring_system epss
scoring_elements 0.95735
published_at 2026-04-08T12:55:00Z
5
value 0.21724
scoring_system epss
scoring_elements 0.95739
published_at 2026-04-09T12:55:00Z
6
value 0.21724
scoring_system epss
scoring_elements 0.95743
published_at 2026-04-11T12:55:00Z
7
value 0.21724
scoring_system epss
scoring_elements 0.95742
published_at 2026-04-12T12:55:00Z
8
value 0.21724
scoring_system epss
scoring_elements 0.95744
published_at 2026-04-13T12:55:00Z
9
value 0.21724
scoring_system epss
scoring_elements 0.95754
published_at 2026-04-16T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2025-32462
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-32462
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-32462
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://www.openwall.com/lists/oss-security/2025/06/30/2
reference_id 2
reference_type
scores
0
value 2.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:L/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-07-01T13:25:34Z/
url https://www.openwall.com/lists/oss-security/2025/06/30/2
5
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=2374692
reference_id 2374692
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=2374692
6
reference_url https://www.sudo.ws/security/advisories/
reference_id advisories
reference_type
scores
0
value 2.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:L/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-07-01T13:25:34Z/
url https://www.sudo.ws/security/advisories/
7
reference_url https://www.sudo.ws/releases/changelog/
reference_id changelog
reference_type
scores
0
value 2.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:L/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-07-01T13:25:34Z/
url https://www.sudo.ws/releases/changelog/
8
reference_url https://access.redhat.com/security/cve/cve-2025-32462
reference_id cve-2025-32462
reference_type
scores
0
value 2.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:L/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-07-01T13:25:34Z/
url https://access.redhat.com/security/cve/cve-2025-32462
9
reference_url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/local/52354.txt
reference_id CVE-2025-32462
reference_type exploit
scores
url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/local/52354.txt
10
reference_url https://security-tracker.debian.org/tracker/CVE-2025-32462
reference_id CVE-2025-32462
reference_type
scores
0
value 2.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:L/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-07-01T13:25:34Z/
url https://security-tracker.debian.org/tracker/CVE-2025-32462
11
reference_url https://explore.alas.aws.amazon.com/CVE-2025-32462.html
reference_id CVE-2025-32462.html
reference_type
scores
0
value 2.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:L/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-07-01T13:25:34Z/
url https://explore.alas.aws.amazon.com/CVE-2025-32462.html
12
reference_url https://www.suse.com/security/cve/CVE-2025-32462.html
reference_id CVE-2025-32462.html
reference_type
scores
0
value 2.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:L/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-07-01T13:25:34Z/
url https://www.suse.com/security/cve/CVE-2025-32462.html
13
reference_url https://security.gentoo.org/glsa/202507-01
reference_id GLSA-202507-01
reference_type
scores
url https://security.gentoo.org/glsa/202507-01
14
reference_url https://www.sudo.ws/security/advisories/host_any/
reference_id host_any
reference_type
scores
0
value 2.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:L/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-07-01T13:25:34Z/
url https://www.sudo.ws/security/advisories/host_any/
15
reference_url https://lists.debian.org/debian-security-announce/2025/msg00118.html
reference_id msg00118.html
reference_type
scores
0
value 2.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:L/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-07-01T13:25:34Z/
url https://lists.debian.org/debian-security-announce/2025/msg00118.html
16
reference_url https://access.redhat.com/errata/RHSA-2025:10110
reference_id RHSA-2025:10110
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:10110
17
reference_url https://access.redhat.com/errata/RHSA-2025:10383
reference_id RHSA-2025:10383
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:10383
18
reference_url https://access.redhat.com/errata/RHSA-2025:10518
reference_id RHSA-2025:10518
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:10518
19
reference_url https://access.redhat.com/errata/RHSA-2025:10520
reference_id RHSA-2025:10520
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:10520
20
reference_url https://access.redhat.com/errata/RHSA-2025:10707
reference_id RHSA-2025:10707
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:10707
21
reference_url https://access.redhat.com/errata/RHSA-2025:10767
reference_id RHSA-2025:10767
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:10767
22
reference_url https://access.redhat.com/errata/RHSA-2025:10771
reference_id RHSA-2025:10771
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:10771
23
reference_url https://access.redhat.com/errata/RHSA-2025:10779
reference_id RHSA-2025:10779
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:10779
24
reference_url https://access.redhat.com/errata/RHSA-2025:10781
reference_id RHSA-2025:10781
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:10781
25
reference_url https://access.redhat.com/errata/RHSA-2025:10835
reference_id RHSA-2025:10835
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:10835
26
reference_url https://access.redhat.com/errata/RHSA-2025:10836
reference_id RHSA-2025:10836
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:10836
27
reference_url https://access.redhat.com/errata/RHSA-2025:10871
reference_id RHSA-2025:10871
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:10871
28
reference_url https://access.redhat.com/errata/RHSA-2025:11537
reference_id RHSA-2025:11537
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:11537
29
reference_url https://access.redhat.com/errata/RHSA-2025:12323
reference_id RHSA-2025:12323
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:12323
30
reference_url https://access.redhat.com/errata/RHSA-2025:12370
reference_id RHSA-2025:12370
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:12370
31
reference_url https://access.redhat.com/errata/RHSA-2025:12437
reference_id RHSA-2025:12437
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:12437
32
reference_url https://access.redhat.com/errata/RHSA-2025:13289
reference_id RHSA-2025:13289
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:13289
33
reference_url https://access.redhat.com/errata/RHSA-2025:15672
reference_id RHSA-2025:15672
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:15672
34
reference_url https://access.redhat.com/errata/RHSA-2025:9978
reference_id RHSA-2025:9978
reference_type
scores
url https://access.redhat.com/errata/RHSA-2025:9978
35
reference_url https://bugs.gentoo.org/show_bug.cgi?id=CVE-2025-32462
reference_id show_bug.cgi?id=CVE-2025-32462
reference_type
scores
0
value 2.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:L/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-07-01T13:25:34Z/
url https://bugs.gentoo.org/show_bug.cgi?id=CVE-2025-32462
36
reference_url https://www.secpod.com/blog/sudo-lpe-vulnerabilities-resolved-what-you-need-to-know-about-cve-2025-32462-and-cve-2025-32463/
reference_id sudo-lpe-vulnerabilities-resolved-what-you-need-to-know-about-cve-2025-32462-and-cve-2025-32463
reference_type
scores
0
value 2.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:L/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-07-01T13:25:34Z/
url https://www.secpod.com/blog/sudo-lpe-vulnerabilities-resolved-what-you-need-to-know-about-cve-2025-32462-and-cve-2025-32463/
37
reference_url https://ubuntu.com/security/notices/USN-7604-1
reference_id USN-7604-1
reference_type
scores
0
value 2.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:L/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-07-01T13:25:34Z/
url https://ubuntu.com/security/notices/USN-7604-1
38
reference_url https://usn.ubuntu.com/7604-1/
reference_id USN-7604-1
reference_type
scores
url https://usn.ubuntu.com/7604-1/
39
reference_url https://usn.ubuntu.com/7604-2/
reference_id USN-7604-2
reference_type
scores
url https://usn.ubuntu.com/7604-2/
40
reference_url https://www.stratascale.com/vulnerability-alert-CVE-2025-32462-sudo-host
reference_id vulnerability-alert-CVE-2025-32462-sudo-host
reference_type
scores
0
value 2.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:L/A:N
1
value Track
scoring_system ssvc
scoring_elements SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-07-01T13:25:34Z/
url https://www.stratascale.com/vulnerability-alert-CVE-2025-32462-sudo-host
fixed_packages
0
url pkg:deb/debian/sudo@1.9.13p3-1%2Bdeb12u3
purl pkg:deb/debian/sudo@1.9.13p3-1%2Bdeb12u3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-m9xh-9ac2-eycq
1
vulnerability VCID-pwmy-f5qe-s3d1
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/sudo@1.9.13p3-1%252Bdeb12u3
aliases CVE-2025-32462
risk_score 10.0
exploitability 2.0
weighted_severity 6.3
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ngg5-bqw7-bbc4
9
url VCID-p5yv-48ry-dfe7
vulnerability_id VCID-p5yv-48ry-dfe7
summary 
Multiple vulnerabilities have been found in sudo, the worst of
    which could result in privilege escalation.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-18634.json
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-18634.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2019-18634
reference_id
reference_type
scores
0
value 0.87468
scoring_system epss
scoring_elements 0.99463
published_at 2026-04-18T12:55:00Z
1
value 0.87468
scoring_system epss
scoring_elements 0.99457
published_at 2026-04-09T12:55:00Z
2
value 0.87468
scoring_system epss
scoring_elements 0.99458
published_at 2026-04-11T12:55:00Z
3
value 0.87468
scoring_system epss
scoring_elements 0.99459
published_at 2026-04-13T12:55:00Z
4
value 0.87468
scoring_system epss
scoring_elements 0.99462
published_at 2026-04-16T12:55:00Z
5
value 0.87468
scoring_system epss
scoring_elements 0.99455
published_at 2026-04-07T12:55:00Z
6
value 0.87468
scoring_system epss
scoring_elements 0.99456
published_at 2026-04-08T12:55:00Z
7
value 0.88561
scoring_system epss
scoring_elements 0.995
published_at 2026-04-04T12:55:00Z
8
value 0.88561
scoring_system epss
scoring_elements 0.99498
published_at 2026-04-02T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2019-18634
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18634
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18634
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1796944
reference_id 1796944
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1796944
5
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=950371
reference_id 950371
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=950371
6
reference_url https://security.archlinux.org/ASA-202002-2
reference_id ASA-202002-2
reference_type
scores
url https://security.archlinux.org/ASA-202002-2
7
reference_url https://security.archlinux.org/AVG-1093
reference_id AVG-1093
reference_type
scores
0
value High
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-1093
8
reference_url https://github.com/Plazmaz/CVE-2019-18634/blob/b348e738a83fd4180b3ec26ed216535547f3bb8a/self-contained.sh
reference_id CVE-2019-18634
reference_type exploit
scores
url https://github.com/Plazmaz/CVE-2019-18634/blob/b348e738a83fd4180b3ec26ed216535547f3bb8a/self-contained.sh
9
reference_url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/47995.txt
reference_id CVE-2019-18634
reference_type exploit
scores
url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/47995.txt
10
reference_url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/local/48052.sh
reference_id CVE-2019-18634
reference_type exploit
scores
url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/local/48052.sh
11
reference_url https://security.gentoo.org/glsa/202003-12
reference_id GLSA-202003-12
reference_type
scores
url https://security.gentoo.org/glsa/202003-12
12
reference_url https://access.redhat.com/errata/RHSA-2020:0487
reference_id RHSA-2020:0487
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:0487
13
reference_url https://access.redhat.com/errata/RHSA-2020:0509
reference_id RHSA-2020:0509
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:0509
14
reference_url https://access.redhat.com/errata/RHSA-2020:0540
reference_id RHSA-2020:0540
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:0540
15
reference_url https://access.redhat.com/errata/RHSA-2020:0726
reference_id RHSA-2020:0726
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:0726
16
reference_url https://usn.ubuntu.com/4263-1/
reference_id USN-4263-1
reference_type
scores
url https://usn.ubuntu.com/4263-1/
17
reference_url https://usn.ubuntu.com/4263-2/
reference_id USN-4263-2
reference_type
scores
url https://usn.ubuntu.com/4263-2/
fixed_packages
0
url pkg:deb/debian/sudo@1.9.5p2-3%2Bdeb11u1
purl pkg:deb/debian/sudo@1.9.5p2-3%2Bdeb11u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3hfe-p6e3-tbe9
1
vulnerability VCID-e9ra-cfnz-m3hg
2
vulnerability VCID-ethj-8jmj-5fdh
3
vulnerability VCID-m9xh-9ac2-eycq
4
vulnerability VCID-ngg5-bqw7-bbc4
5
vulnerability VCID-pwmy-f5qe-s3d1
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/sudo@1.9.5p2-3%252Bdeb11u1
aliases CVE-2019-18634
risk_score 10.0
exploitability 2.0
weighted_severity 8.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-p5yv-48ry-dfe7
10
url VCID-pj45-2vrx-6fcv
vulnerability_id VCID-pj45-2vrx-6fcv
summary 
Multiple vulnerabilities have been found in sudo, the worst of
    which could result in privilege escalation.
references
0
reference_url http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00042.html
reference_id
reference_type
scores
url http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00042.html
1
reference_url http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00047.html
reference_id
reference_type
scores
url http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00047.html
2
reference_url http://packetstormsecurity.com/files/154853/Slackware-Security-Advisory-sudo-Updates.html
reference_id
reference_type
scores
url http://packetstormsecurity.com/files/154853/Slackware-Security-Advisory-sudo-Updates.html
3
reference_url https://access.redhat.com/errata/RHBA-2019:3248
reference_id
reference_type
scores
url https://access.redhat.com/errata/RHBA-2019:3248
4
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-14287.json
reference_id
reference_type
scores
0
value 7.0
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-14287.json
5
reference_url https://api.first.org/data/v1/epss?cve=CVE-2019-14287
reference_id
reference_type
scores
0
value 0.85814
scoring_system epss
scoring_elements 0.99377
published_at 2026-04-01T12:55:00Z
1
value 0.85814
scoring_system epss
scoring_elements 0.99385
published_at 2026-04-18T12:55:00Z
2
value 0.85814
scoring_system epss
scoring_elements 0.99381
published_at 2026-04-07T12:55:00Z
3
value 0.85814
scoring_system epss
scoring_elements 0.99382
published_at 2026-04-09T12:55:00Z
4
value 0.85814
scoring_system epss
scoring_elements 0.99384
published_at 2026-04-13T12:55:00Z
5
value 0.85814
scoring_system epss
scoring_elements 0.99386
published_at 2026-04-16T12:55:00Z
6
value 0.85814
scoring_system epss
scoring_elements 0.99378
published_at 2026-04-02T12:55:00Z
7
value 0.85814
scoring_system epss
scoring_elements 0.99379
published_at 2026-04-04T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2019-14287
6
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14287
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14287
7
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
8
reference_url https://lists.debian.org/debian-lts-announce/2019/10/msg00022.html
reference_id
reference_type
scores
url https://lists.debian.org/debian-lts-announce/2019/10/msg00022.html
9
reference_url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IP7SIOAVLSKJGMTIULX52VQUPTVSC43U/
reference_id
reference_type
scores
url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IP7SIOAVLSKJGMTIULX52VQUPTVSC43U/
10
reference_url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NPLAM57TPJQGKQMNG6RHFBLACD6K356N/
reference_id
reference_type
scores
url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NPLAM57TPJQGKQMNG6RHFBLACD6K356N/
11
reference_url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TUVAOZBYUHZS56A5FQSCDVGXT7PW7FL2/
reference_id
reference_type
scores
url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TUVAOZBYUHZS56A5FQSCDVGXT7PW7FL2/
12
reference_url https://resources.whitesourcesoftware.com/blog-whitesource/new-vulnerability-in-sudo-cve-2019-14287
reference_id
reference_type
scores
url https://resources.whitesourcesoftware.com/blog-whitesource/new-vulnerability-in-sudo-cve-2019-14287
13
reference_url https://seclists.org/bugtraq/2019/Oct/20
reference_id
reference_type
scores
url https://seclists.org/bugtraq/2019/Oct/20
14
reference_url https://seclists.org/bugtraq/2019/Oct/21
reference_id
reference_type
scores
url https://seclists.org/bugtraq/2019/Oct/21
15
reference_url https://security.netapp.com/advisory/ntap-20191017-0003/
reference_id
reference_type
scores
url https://security.netapp.com/advisory/ntap-20191017-0003/
16
reference_url https://support.f5.com/csp/article/K53746212?utm_source=f5support&amp%3Butm_medium=RSS
reference_id
reference_type
scores
url https://support.f5.com/csp/article/K53746212?utm_source=f5support&amp%3Butm_medium=RSS
17
reference_url https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbns03976en_us
reference_id
reference_type
scores
url https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbns03976en_us
18
reference_url https://www.debian.org/security/2019/dsa-4543
reference_id
reference_type
scores
url https://www.debian.org/security/2019/dsa-4543
19
reference_url https://www.openwall.com/lists/oss-security/2019/10/15/2
reference_id
reference_type
scores
url https://www.openwall.com/lists/oss-security/2019/10/15/2
20
reference_url https://www.sudo.ws/alerts/minus_1_uid.html
reference_id
reference_type
scores
url https://www.sudo.ws/alerts/minus_1_uid.html
21
reference_url http://www.openwall.com/lists/oss-security/2019/10/14/1
reference_id
reference_type
scores
url http://www.openwall.com/lists/oss-security/2019/10/14/1
22
reference_url http://www.openwall.com/lists/oss-security/2019/10/24/1
reference_id
reference_type
scores
url http://www.openwall.com/lists/oss-security/2019/10/24/1
23
reference_url http://www.openwall.com/lists/oss-security/2019/10/29/3
reference_id
reference_type
scores
url http://www.openwall.com/lists/oss-security/2019/10/29/3
24
reference_url http://www.openwall.com/lists/oss-security/2021/09/14/2
reference_id
reference_type
scores
url http://www.openwall.com/lists/oss-security/2021/09/14/2
25
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1760531
reference_id 1760531
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1760531
26
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=942322
reference_id 942322
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=942322
27
reference_url https://security.archlinux.org/ASA-201910-9
reference_id ASA-201910-9
reference_type
scores
url https://security.archlinux.org/ASA-201910-9
28
reference_url https://security.archlinux.org/AVG-1047
reference_id AVG-1047
reference_type
scores
0
value High
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-1047
29
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:netapp:element_software_management_node:-:*:*:*:*:*:*:*
reference_id cpe:2.3:a:netapp:element_software_management_node:-:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:netapp:element_software_management_node:-:*:*:*:*:*:*:*
30
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:openshift_container_platform:4.1:*:*:*:*:*:*:*
reference_id cpe:2.3:a:redhat:openshift_container_platform:4.1:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:openshift_container_platform:4.1:*:*:*:*:*:*:*
31
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:virtualization:4.2:*:*:*:*:*:*:*
reference_id cpe:2.3:a:redhat:virtualization:4.2:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:virtualization:4.2:*:*:*:*:*:*:*
32
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:sudo_project:sudo:*:*:*:*:*:*:*:*
reference_id cpe:2.3:a:sudo_project:sudo:*:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:sudo_project:sudo:*:*:*:*:*:*:*:*
33
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:esm:*:*:*
reference_id cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:esm:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:esm:*:*:*
34
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:*
reference_id cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:*
35
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*
reference_id cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*
36
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*
reference_id cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*
37
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:19.04:*:*:*:*:*:*:*
reference_id cpe:2.3:o:canonical:ubuntu_linux:19.04:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:19.04:*:*:*:*:*:*:*
38
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*
reference_id cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*
39
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
reference_id cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
40
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
reference_id cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
41
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*
reference_id cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*
42
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*
reference_id cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*
43
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:31:*:*:*:*:*:*:*
reference_id cpe:2.3:o:fedoraproject:fedora:31:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:31:*:*:*:*:*:*:*
44
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:leap:15.0:*:*:*:*:*:*:*
reference_id cpe:2.3:o:opensuse:leap:15.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:leap:15.0:*:*:*:*:*:*:*
45
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:leap:15.1:*:*:*:*:*:*:*
reference_id cpe:2.3:o:opensuse:leap:15.1:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:leap:15.1:*:*:*:*:*:*:*
46
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*
reference_id cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*
47
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*
reference_id cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*
48
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*
reference_id cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*
49
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_eus:7.5:*:*:*:*:*:*:*
reference_id cpe:2.3:o:redhat:enterprise_linux_eus:7.5:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_eus:7.5:*:*:*:*:*:*:*
50
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_eus:7.6:*:*:*:*:*:*:*
reference_id cpe:2.3:o:redhat:enterprise_linux_eus:7.6:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_eus:7.6:*:*:*:*:*:*:*
51
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_eus:7.7:*:*:*:*:*:*:*
reference_id cpe:2.3:o:redhat:enterprise_linux_eus:7.7:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_eus:7.7:*:*:*:*:*:*:*
52
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_eus:8.1:*:*:*:*:*:*:*
reference_id cpe:2.3:o:redhat:enterprise_linux_eus:8.1:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_eus:8.1:*:*:*:*:*:*:*
53
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_eus:8.2:*:*:*:*:*:*:*
reference_id cpe:2.3:o:redhat:enterprise_linux_eus:8.2:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_eus:8.2:*:*:*:*:*:*:*
54
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_eus:8.4:*:*:*:*:*:*:*
reference_id cpe:2.3:o:redhat:enterprise_linux_eus:8.4:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_eus:8.4:*:*:*:*:*:*:*
55
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server:5.0:*:*:*:*:*:*:*
reference_id cpe:2.3:o:redhat:enterprise_linux_server:5.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server:5.0:*:*:*:*:*:*:*
56
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*
reference_id cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*
57
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*
reference_id cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*
58
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_aus:6.5:*:*:*:*:*:*:*
reference_id cpe:2.3:o:redhat:enterprise_linux_server_aus:6.5:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_aus:6.5:*:*:*:*:*:*:*
59
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_aus:6.6:*:*:*:*:*:*:*
reference_id cpe:2.3:o:redhat:enterprise_linux_server_aus:6.6:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_aus:6.6:*:*:*:*:*:*:*
60
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_aus:7.2:*:*:*:*:*:*:*
reference_id cpe:2.3:o:redhat:enterprise_linux_server_aus:7.2:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_aus:7.2:*:*:*:*:*:*:*
61
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_aus:7.3:*:*:*:*:*:*:*
reference_id cpe:2.3:o:redhat:enterprise_linux_server_aus:7.3:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_aus:7.3:*:*:*:*:*:*:*
62
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_aus:7.4:*:*:*:*:*:*:*
reference_id cpe:2.3:o:redhat:enterprise_linux_server_aus:7.4:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_aus:7.4:*:*:*:*:*:*:*
63
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_aus:7.6:*:*:*:*:*:*:*
reference_id cpe:2.3:o:redhat:enterprise_linux_server_aus:7.6:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_aus:7.6:*:*:*:*:*:*:*
64
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_aus:7.7:*:*:*:*:*:*:*
reference_id cpe:2.3:o:redhat:enterprise_linux_server_aus:7.7:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_aus:7.7:*:*:*:*:*:*:*
65
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_aus:8.2:*:*:*:*:*:*:*
reference_id cpe:2.3:o:redhat:enterprise_linux_server_aus:8.2:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_aus:8.2:*:*:*:*:*:*:*
66
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_aus:8.4:*:*:*:*:*:*:*
reference_id cpe:2.3:o:redhat:enterprise_linux_server_aus:8.4:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_aus:8.4:*:*:*:*:*:*:*
67
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_tus:7.2:*:*:*:*:*:*:*
reference_id cpe:2.3:o:redhat:enterprise_linux_server_tus:7.2:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_tus:7.2:*:*:*:*:*:*:*
68
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_tus:7.3:*:*:*:*:*:*:*
reference_id cpe:2.3:o:redhat:enterprise_linux_server_tus:7.3:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_tus:7.3:*:*:*:*:*:*:*
69
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_tus:7.4:*:*:*:*:*:*:*
reference_id cpe:2.3:o:redhat:enterprise_linux_server_tus:7.4:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_tus:7.4:*:*:*:*:*:*:*
70
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_tus:7.6:*:*:*:*:*:*:*
reference_id cpe:2.3:o:redhat:enterprise_linux_server_tus:7.6:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_tus:7.6:*:*:*:*:*:*:*
71
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_tus:7.7:*:*:*:*:*:*:*
reference_id cpe:2.3:o:redhat:enterprise_linux_server_tus:7.7:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_tus:7.7:*:*:*:*:*:*:*
72
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_tus:8.2:*:*:*:*:*:*:*
reference_id cpe:2.3:o:redhat:enterprise_linux_server_tus:8.2:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_tus:8.2:*:*:*:*:*:*:*
73
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_tus:8.4:*:*:*:*:*:*:*
reference_id cpe:2.3:o:redhat:enterprise_linux_server_tus:8.4:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_tus:8.4:*:*:*:*:*:*:*
74
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*
reference_id cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*
75
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*
reference_id cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*
76
reference_url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/local/47502.py
reference_id CVE-2019-14287
reference_type exploit
scores
url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/local/47502.py
77
reference_url https://nvd.nist.gov/vuln/detail/CVE-2019-14287
reference_id CVE-2019-14287
reference_type
scores
0
value 9.0
scoring_system cvssv2
scoring_elements AV:N/AC:L/Au:S/C:C/I:C/A:C
1
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
url https://nvd.nist.gov/vuln/detail/CVE-2019-14287
78
reference_url https://security.gentoo.org/glsa/202003-12
reference_id GLSA-202003-12
reference_type
scores
url https://security.gentoo.org/glsa/202003-12
79
reference_url https://access.redhat.com/errata/RHSA-2019:3197
reference_id RHSA-2019:3197
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:3197
80
reference_url https://access.redhat.com/errata/RHSA-2019:3204
reference_id RHSA-2019:3204
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:3204
81
reference_url https://access.redhat.com/errata/RHSA-2019:3205
reference_id RHSA-2019:3205
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:3205
82
reference_url https://access.redhat.com/errata/RHSA-2019:3209
reference_id RHSA-2019:3209
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:3209
83
reference_url https://access.redhat.com/errata/RHSA-2019:3219
reference_id RHSA-2019:3219
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:3219
84
reference_url https://access.redhat.com/errata/RHSA-2019:3278
reference_id RHSA-2019:3278
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:3278
85
reference_url https://access.redhat.com/errata/RHSA-2019:3694
reference_id RHSA-2019:3694
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:3694
86
reference_url https://access.redhat.com/errata/RHSA-2019:3754
reference_id RHSA-2019:3754
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:3754
87
reference_url https://access.redhat.com/errata/RHSA-2019:3755
reference_id RHSA-2019:3755
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:3755
88
reference_url https://access.redhat.com/errata/RHSA-2019:3895
reference_id RHSA-2019:3895
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:3895
89
reference_url https://access.redhat.com/errata/RHSA-2019:3916
reference_id RHSA-2019:3916
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:3916
90
reference_url https://access.redhat.com/errata/RHSA-2019:3941
reference_id RHSA-2019:3941
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:3941
91
reference_url https://access.redhat.com/errata/RHSA-2019:4191
reference_id RHSA-2019:4191
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:4191
92
reference_url https://access.redhat.com/errata/RHSA-2020:0388
reference_id RHSA-2020:0388
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:0388
93
reference_url https://usn.ubuntu.com/4154-1/
reference_id USN-4154-1
reference_type
scores
url https://usn.ubuntu.com/4154-1/
fixed_packages
0
url pkg:deb/debian/sudo@1.9.5p2-3%2Bdeb11u1
purl pkg:deb/debian/sudo@1.9.5p2-3%2Bdeb11u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3hfe-p6e3-tbe9
1
vulnerability VCID-e9ra-cfnz-m3hg
2
vulnerability VCID-ethj-8jmj-5fdh
3
vulnerability VCID-m9xh-9ac2-eycq
4
vulnerability VCID-ngg5-bqw7-bbc4
5
vulnerability VCID-pwmy-f5qe-s3d1
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/sudo@1.9.5p2-3%252Bdeb11u1
aliases CVE-2019-14287
risk_score 10.0
exploitability 2.0
weighted_severity 8.1
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-pj45-2vrx-6fcv
11
url VCID-pyfy-88dw-9ba8
vulnerability_id VCID-pyfy-88dw-9ba8
summary sudo: by using ! character in the shadow file instead of a password hash can access to a run as all sudoer account
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-19234.json
reference_id
reference_type
scores
0
value 7.5
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-19234.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2019-19234
reference_id
reference_type
scores
0
value 0.04075
scoring_system epss
scoring_elements 0.88492
published_at 2026-04-01T12:55:00Z
1
value 0.04075
scoring_system epss
scoring_elements 0.885
published_at 2026-04-02T12:55:00Z
2
value 0.04075
scoring_system epss
scoring_elements 0.88517
published_at 2026-04-04T12:55:00Z
3
value 0.04075
scoring_system epss
scoring_elements 0.8852
published_at 2026-04-07T12:55:00Z
4
value 0.04075
scoring_system epss
scoring_elements 0.88539
published_at 2026-04-08T12:55:00Z
5
value 0.04075
scoring_system epss
scoring_elements 0.88544
published_at 2026-04-09T12:55:00Z
6
value 0.04075
scoring_system epss
scoring_elements 0.88555
published_at 2026-04-11T12:55:00Z
7
value 0.04075
scoring_system epss
scoring_elements 0.88548
published_at 2026-04-12T12:55:00Z
8
value 0.04075
scoring_system epss
scoring_elements 0.88547
published_at 2026-04-13T12:55:00Z
9
value 0.04075
scoring_system epss
scoring_elements 0.88561
published_at 2026-04-16T12:55:00Z
10
value 0.04075
scoring_system epss
scoring_elements 0.88557
published_at 2026-04-18T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2019-19234
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19234
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-19234
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1786708
reference_id 1786708
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1786708
5
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=947225
reference_id 947225
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=947225
6
reference_url https://access.redhat.com/errata/RHSA-2020:1804
reference_id RHSA-2020:1804
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:1804
fixed_packages
0
url pkg:deb/debian/sudo@1.9.5p2-3%2Bdeb11u1
purl pkg:deb/debian/sudo@1.9.5p2-3%2Bdeb11u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3hfe-p6e3-tbe9
1
vulnerability VCID-e9ra-cfnz-m3hg
2
vulnerability VCID-ethj-8jmj-5fdh
3
vulnerability VCID-m9xh-9ac2-eycq
4
vulnerability VCID-ngg5-bqw7-bbc4
5
vulnerability VCID-pwmy-f5qe-s3d1
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/sudo@1.9.5p2-3%252Bdeb11u1
aliases CVE-2019-19234
risk_score 3.4
exploitability 0.5
weighted_severity 6.8
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-pyfy-88dw-9ba8
Fixing_vulnerabilities
0
url VCID-1cuy-x9m9-p3c4
vulnerability_id VCID-1cuy-x9m9-p3c4
summary 
Multiple vulnerabilities have been found in sudo, the worst of
    which could result in privilege escalation.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3156.json
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-3156.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2021-3156
reference_id
reference_type
scores
0
value 0.92309
scoring_system epss
scoring_elements 0.99722
published_at 2026-04-18T12:55:00Z
1
value 0.92309
scoring_system epss
scoring_elements 0.99721
published_at 2026-04-12T12:55:00Z
2
value 0.92309
scoring_system epss
scoring_elements 0.9972
published_at 2026-04-13T12:55:00Z
3
value 0.92483
scoring_system epss
scoring_elements 0.9973
published_at 2026-04-02T12:55:00Z
4
value 0.92483
scoring_system epss
scoring_elements 0.99733
published_at 2026-04-07T12:55:00Z
5
value 0.92483
scoring_system epss
scoring_elements 0.99732
published_at 2026-04-04T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2021-3156
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3156
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3156
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url http://www.openwall.com/lists/oss-security/2021/01/27/1
reference_id 1
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value Attend
scoring_system ssvc
scoring_elements SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-02-03T15:43:52Z/
url http://www.openwall.com/lists/oss-security/2021/01/27/1
5
reference_url http://www.openwall.com/lists/oss-security/2021/02/15/1
reference_id 1
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value Attend
scoring_system ssvc
scoring_elements SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-02-03T15:43:52Z/
url http://www.openwall.com/lists/oss-security/2021/02/15/1
6
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1917684
reference_id 1917684
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1917684
7
reference_url http://www.openwall.com/lists/oss-security/2021/01/27/2
reference_id 2
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value Attend
scoring_system ssvc
scoring_elements SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-02-03T15:43:52Z/
url http://www.openwall.com/lists/oss-security/2021/01/27/2
8
reference_url http://seclists.org/fulldisclosure/2024/Feb/3
reference_id 3
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value Attend
scoring_system ssvc
scoring_elements SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-02-03T15:43:52Z/
url http://seclists.org/fulldisclosure/2024/Feb/3
9
reference_url https://www.openwall.com/lists/oss-security/2021/01/26/3
reference_id 3
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value Attend
scoring_system ssvc
scoring_elements SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-02-03T15:43:52Z/
url https://www.openwall.com/lists/oss-security/2021/01/26/3
10
reference_url http://www.openwall.com/lists/oss-security/2021/01/26/3
reference_id 3
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value Attend
scoring_system ssvc
scoring_elements SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-02-03T15:43:52Z/
url http://www.openwall.com/lists/oss-security/2021/01/26/3
11
reference_url http://seclists.org/fulldisclosure/2021/Feb/42
reference_id 42
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value Attend
scoring_system ssvc
scoring_elements SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-02-03T15:43:52Z/
url http://seclists.org/fulldisclosure/2021/Feb/42
12
reference_url http://www.openwall.com/lists/oss-security/2024/01/30/6
reference_id 6
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value Attend
scoring_system ssvc
scoring_elements SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-02-03T15:43:52Z/
url http://www.openwall.com/lists/oss-security/2024/01/30/6
13
reference_url http://seclists.org/fulldisclosure/2021/Jan/79
reference_id 79
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value Attend
scoring_system ssvc
scoring_elements SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-02-03T15:43:52Z/
url http://seclists.org/fulldisclosure/2021/Jan/79
14
reference_url https://www.kb.cert.org/vuls/id/794544
reference_id 794544
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value Attend
scoring_system ssvc
scoring_elements SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-02-03T15:43:52Z/
url https://www.kb.cert.org/vuls/id/794544
15
reference_url http://www.openwall.com/lists/oss-security/2024/01/30/8
reference_id 8
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value Attend
scoring_system ssvc
scoring_elements SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-02-03T15:43:52Z/
url http://www.openwall.com/lists/oss-security/2024/01/30/8
16
reference_url https://security.archlinux.org/ASA-202101-25
reference_id ASA-202101-25
reference_type
scores
url https://security.archlinux.org/ASA-202101-25
17
reference_url https://security.archlinux.org/AVG-1431
reference_id AVG-1431
reference_type
scores
0
value Critical
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-1431
18
reference_url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CALA5FTXIQBRRYUA2ZQNJXB6OQMAXEII/
reference_id CALA5FTXIQBRRYUA2ZQNJXB6OQMAXEII
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value Attend
scoring_system ssvc
scoring_elements SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-02-03T15:43:52Z/
url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CALA5FTXIQBRRYUA2ZQNJXB6OQMAXEII/
19
reference_url https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sudo-privesc-jan2021-qnYQfcM
reference_id cisco-sa-sudo-privesc-jan2021-qnYQfcM
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value Attend
scoring_system ssvc
scoring_elements SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-02-03T15:43:52Z/
url https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sudo-privesc-jan2021-qnYQfcM
20
reference_url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/local/49521.py
reference_id CVE-2021-3156
reference_type exploit
scores
url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/local/49521.py
21
reference_url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/local/49522.c
reference_id CVE-2021-3156
reference_type exploit
scores
url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/local/49522.c
22
reference_url https://www.debian.org/security/2021/dsa-4839
reference_id dsa-4839
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value Attend
scoring_system ssvc
scoring_elements SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-02-03T15:43:52Z/
url https://www.debian.org/security/2021/dsa-4839
23
reference_url http://packetstormsecurity.com/files/176932/glibc-syslog-Heap-Based-Buffer-Overflow.html
reference_id glibc-syslog-Heap-Based-Buffer-Overflow.html
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value Attend
scoring_system ssvc
scoring_elements SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-02-03T15:43:52Z/
url http://packetstormsecurity.com/files/176932/glibc-syslog-Heap-Based-Buffer-Overflow.html
24
reference_url https://security.gentoo.org/glsa/202101-33
reference_id GLSA-202101-33
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value Attend
scoring_system ssvc
scoring_elements SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-02-03T15:43:52Z/
url https://security.gentoo.org/glsa/202101-33
25
reference_url https://support.apple.com/kb/HT212177
reference_id HT212177
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value Attend
scoring_system ssvc
scoring_elements SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-02-03T15:43:52Z/
url https://support.apple.com/kb/HT212177
26
reference_url https://kc.mcafee.com/corporate/index?page=content&id=SB10348
reference_id index?page=content&id=SB10348
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value Attend
scoring_system ssvc
scoring_elements SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-02-03T15:43:52Z/
url https://kc.mcafee.com/corporate/index?page=content&id=SB10348
27
reference_url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LHXK6ICO5AYLGFK2TAX5MZKUXTUKWOJY/
reference_id LHXK6ICO5AYLGFK2TAX5MZKUXTUKWOJY
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value Attend
scoring_system ssvc
scoring_elements SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-02-03T15:43:52Z/
url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LHXK6ICO5AYLGFK2TAX5MZKUXTUKWOJY/
28
reference_url https://lists.debian.org/debian-lts-announce/2021/01/msg00022.html
reference_id msg00022.html
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value Attend
scoring_system ssvc
scoring_elements SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-02-03T15:43:52Z/
url https://lists.debian.org/debian-lts-announce/2021/01/msg00022.html
29
reference_url https://security.netapp.com/advisory/ntap-20210128-0001/
reference_id ntap-20210128-0001
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value Attend
scoring_system ssvc
scoring_elements SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-02-03T15:43:52Z/
url https://security.netapp.com/advisory/ntap-20210128-0001/
30
reference_url https://security.netapp.com/advisory/ntap-20210128-0002/
reference_id ntap-20210128-0002
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value Attend
scoring_system ssvc
scoring_elements SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-02-03T15:43:52Z/
url https://security.netapp.com/advisory/ntap-20210128-0002/
31
reference_url https://access.redhat.com/errata/RHSA-2021:0218
reference_id RHSA-2021:0218
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0218
32
reference_url https://access.redhat.com/errata/RHSA-2021:0219
reference_id RHSA-2021:0219
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0219
33
reference_url https://access.redhat.com/errata/RHSA-2021:0220
reference_id RHSA-2021:0220
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0220
34
reference_url https://access.redhat.com/errata/RHSA-2021:0221
reference_id RHSA-2021:0221
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0221
35
reference_url https://access.redhat.com/errata/RHSA-2021:0222
reference_id RHSA-2021:0222
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0222
36
reference_url https://access.redhat.com/errata/RHSA-2021:0223
reference_id RHSA-2021:0223
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0223
37
reference_url https://access.redhat.com/errata/RHSA-2021:0224
reference_id RHSA-2021:0224
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0224
38
reference_url https://access.redhat.com/errata/RHSA-2021:0225
reference_id RHSA-2021:0225
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0225
39
reference_url https://access.redhat.com/errata/RHSA-2021:0226
reference_id RHSA-2021:0226
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0226
40
reference_url https://access.redhat.com/errata/RHSA-2021:0227
reference_id RHSA-2021:0227
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0227
41
reference_url https://access.redhat.com/errata/RHSA-2021:0395
reference_id RHSA-2021:0395
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0395
42
reference_url https://access.redhat.com/errata/RHSA-2021:0401
reference_id RHSA-2021:0401
reference_type
scores
url https://access.redhat.com/errata/RHSA-2021:0401
43
reference_url https://www.beyondtrust.com/blog/entry/security-advisory-privilege-management-for-unix-linux-pmul-basic-and-privilege-management-for-mac-pmm-affected-by-sudo-vulnerability
reference_id security-advisory-privilege-management-for-unix-linux-pmul-basic-and-privilege-management-for-mac-pmm-affected-by-sudo-vulnerability
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value Attend
scoring_system ssvc
scoring_elements SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-02-03T15:43:52Z/
url https://www.beyondtrust.com/blog/entry/security-advisory-privilege-management-for-unix-linux-pmul-basic-and-privilege-management-for-mac-pmm-affected-by-sudo-vulnerability
44
reference_url https://www.sudo.ws/stable.html#1.9.5p2
reference_id stable.html#1.9.5p2
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value Attend
scoring_system ssvc
scoring_elements SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-02-03T15:43:52Z/
url https://www.sudo.ws/stable.html#1.9.5p2
45
reference_url http://packetstormsecurity.com/files/161293/Sudo-1.8.31p2-1.9.5p1-Buffer-Overflow.html
reference_id Sudo-1.8.31p2-1.9.5p1-Buffer-Overflow.html
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value Attend
scoring_system ssvc
scoring_elements SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-02-03T15:43:52Z/
url http://packetstormsecurity.com/files/161293/Sudo-1.8.31p2-1.9.5p1-Buffer-Overflow.html
46
reference_url http://packetstormsecurity.com/files/161270/Sudo-1.9.5p1-Buffer-Overflow-Privilege-Escalation.html
reference_id Sudo-1.9.5p1-Buffer-Overflow-Privilege-Escalation.html
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value Attend
scoring_system ssvc
scoring_elements SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-02-03T15:43:52Z/
url http://packetstormsecurity.com/files/161270/Sudo-1.9.5p1-Buffer-Overflow-Privilege-Escalation.html
47
reference_url http://packetstormsecurity.com/files/161230/Sudo-Buffer-Overflow-Privilege-Escalation.html
reference_id Sudo-Buffer-Overflow-Privilege-Escalation.html
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value Attend
scoring_system ssvc
scoring_elements SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-02-03T15:43:52Z/
url http://packetstormsecurity.com/files/161230/Sudo-Buffer-Overflow-Privilege-Escalation.html
48
reference_url https://www.vicarius.io/vsociety/posts/sudoedit-pwned-cve-2021-3156
reference_id sudoedit-pwned-cve-2021-3156
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value Attend
scoring_system ssvc
scoring_elements SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-02-03T15:43:52Z/
url https://www.vicarius.io/vsociety/posts/sudoedit-pwned-cve-2021-3156
49
reference_url http://packetstormsecurity.com/files/161160/Sudo-Heap-Based-Buffer-Overflow.html
reference_id Sudo-Heap-Based-Buffer-Overflow.html
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value Attend
scoring_system ssvc
scoring_elements SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-02-03T15:43:52Z/
url http://packetstormsecurity.com/files/161160/Sudo-Heap-Based-Buffer-Overflow.html
50
reference_url https://www.synology.com/security/advisory/Synology_SA_21_02
reference_id Synology_SA_21_02
reference_type
scores
0
value 7.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
1
value Attend
scoring_system ssvc
scoring_elements SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-02-03T15:43:52Z/
url https://www.synology.com/security/advisory/Synology_SA_21_02
51
reference_url https://usn.ubuntu.com/4705-1/
reference_id USN-4705-1
reference_type
scores
url https://usn.ubuntu.com/4705-1/
52
reference_url https://usn.ubuntu.com/4705-2/
reference_id USN-4705-2
reference_type
scores
url https://usn.ubuntu.com/4705-2/
fixed_packages
0
url pkg:deb/debian/sudo@1.8.27-1%2Bdeb10u3
purl pkg:deb/debian/sudo@1.8.27-1%2Bdeb10u3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1cuy-x9m9-p3c4
1
vulnerability VCID-3hfe-p6e3-tbe9
2
vulnerability VCID-7w9w-4whw-9bgk
3
vulnerability VCID-9fh6-mr57-wba8
4
vulnerability VCID-enw3-mnnx-myd5
5
vulnerability VCID-esf1-4zw7-5fcy
6
vulnerability VCID-ethj-8jmj-5fdh
7
vulnerability VCID-k42r-mk4h-mbbg
8
vulnerability VCID-ngg5-bqw7-bbc4
9
vulnerability VCID-p5yv-48ry-dfe7
10
vulnerability VCID-pj45-2vrx-6fcv
11
vulnerability VCID-pyfy-88dw-9ba8
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/sudo@1.8.27-1%252Bdeb10u3
1
url pkg:deb/debian/sudo@1.9.5p2-3%2Bdeb11u1
purl pkg:deb/debian/sudo@1.9.5p2-3%2Bdeb11u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3hfe-p6e3-tbe9
1
vulnerability VCID-e9ra-cfnz-m3hg
2
vulnerability VCID-ethj-8jmj-5fdh
3
vulnerability VCID-m9xh-9ac2-eycq
4
vulnerability VCID-ngg5-bqw7-bbc4
5
vulnerability VCID-pwmy-f5qe-s3d1
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/sudo@1.9.5p2-3%252Bdeb11u1
aliases CVE-2021-3156
risk_score 10.0
exploitability 2.0
weighted_severity 9.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-1cuy-x9m9-p3c4
1
url VCID-9y5c-e765-tqgt
vulnerability_id VCID-9y5c-e765-tqgt
summary A vulnerability in sudo allows local users to gain root privileges.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-1000368.json
reference_id
reference_type
scores
0
value 7.3
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-1000368.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2017-1000368
reference_id
reference_type
scores
0
value 0.00166
scoring_system epss
scoring_elements 0.37526
published_at 2026-04-01T12:55:00Z
1
value 0.00166
scoring_system epss
scoring_elements 0.37657
published_at 2026-04-18T12:55:00Z
2
value 0.00166
scoring_system epss
scoring_elements 0.37628
published_at 2026-04-13T12:55:00Z
3
value 0.00166
scoring_system epss
scoring_elements 0.37675
published_at 2026-04-16T12:55:00Z
4
value 0.00166
scoring_system epss
scoring_elements 0.37708
published_at 2026-04-02T12:55:00Z
5
value 0.00166
scoring_system epss
scoring_elements 0.37733
published_at 2026-04-04T12:55:00Z
6
value 0.00166
scoring_system epss
scoring_elements 0.37612
published_at 2026-04-07T12:55:00Z
7
value 0.00166
scoring_system epss
scoring_elements 0.37663
published_at 2026-04-08T12:55:00Z
8
value 0.00166
scoring_system epss
scoring_elements 0.37676
published_at 2026-04-09T12:55:00Z
9
value 0.00166
scoring_system epss
scoring_elements 0.37691
published_at 2026-04-11T12:55:00Z
10
value 0.00166
scoring_system epss
scoring_elements 0.37656
published_at 2026-04-12T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2017-1000368
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-1000368
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-1000368
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7.2
scoring_system cvssv2
scoring_elements AV:L/AC:L/Au:N/C:C/I:C/A:C
1
value 7.8
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1459152
reference_id 1459152
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1459152
5
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=863897
reference_id 863897
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=863897
6
reference_url https://security.gentoo.org/glsa/201710-04
reference_id GLSA-201710-04
reference_type
scores
url https://security.gentoo.org/glsa/201710-04
7
reference_url https://access.redhat.com/errata/RHSA-2017:1574
reference_id RHSA-2017:1574
reference_type
scores
url https://access.redhat.com/errata/RHSA-2017:1574
8
reference_url https://usn.ubuntu.com/3968-1/
reference_id USN-3968-1
reference_type
scores
url https://usn.ubuntu.com/3968-1/
9
reference_url https://usn.ubuntu.com/3968-2/
reference_id USN-3968-2
reference_type
scores
url https://usn.ubuntu.com/3968-2/
fixed_packages
0
url pkg:deb/debian/sudo@1.8.27-1%2Bdeb10u3
purl pkg:deb/debian/sudo@1.8.27-1%2Bdeb10u3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1cuy-x9m9-p3c4
1
vulnerability VCID-3hfe-p6e3-tbe9
2
vulnerability VCID-7w9w-4whw-9bgk
3
vulnerability VCID-9fh6-mr57-wba8
4
vulnerability VCID-enw3-mnnx-myd5
5
vulnerability VCID-esf1-4zw7-5fcy
6
vulnerability VCID-ethj-8jmj-5fdh
7
vulnerability VCID-k42r-mk4h-mbbg
8
vulnerability VCID-ngg5-bqw7-bbc4
9
vulnerability VCID-p5yv-48ry-dfe7
10
vulnerability VCID-pj45-2vrx-6fcv
11
vulnerability VCID-pyfy-88dw-9ba8
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/sudo@1.8.27-1%252Bdeb10u3
aliases CVE-2017-1000368
risk_score 3.3
exploitability 0.5
weighted_severity 6.6
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-9y5c-e765-tqgt
2
url VCID-pj45-2vrx-6fcv
vulnerability_id VCID-pj45-2vrx-6fcv
summary 
Multiple vulnerabilities have been found in sudo, the worst of
    which could result in privilege escalation.
references
0
reference_url http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00042.html
reference_id
reference_type
scores
url http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00042.html
1
reference_url http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00047.html
reference_id
reference_type
scores
url http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00047.html
2
reference_url http://packetstormsecurity.com/files/154853/Slackware-Security-Advisory-sudo-Updates.html
reference_id
reference_type
scores
url http://packetstormsecurity.com/files/154853/Slackware-Security-Advisory-sudo-Updates.html
3
reference_url https://access.redhat.com/errata/RHBA-2019:3248
reference_id
reference_type
scores
url https://access.redhat.com/errata/RHBA-2019:3248
4
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-14287.json
reference_id
reference_type
scores
0
value 7.0
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-14287.json
5
reference_url https://api.first.org/data/v1/epss?cve=CVE-2019-14287
reference_id
reference_type
scores
0
value 0.85814
scoring_system epss
scoring_elements 0.99377
published_at 2026-04-01T12:55:00Z
1
value 0.85814
scoring_system epss
scoring_elements 0.99385
published_at 2026-04-18T12:55:00Z
2
value 0.85814
scoring_system epss
scoring_elements 0.99381
published_at 2026-04-07T12:55:00Z
3
value 0.85814
scoring_system epss
scoring_elements 0.99382
published_at 2026-04-09T12:55:00Z
4
value 0.85814
scoring_system epss
scoring_elements 0.99384
published_at 2026-04-13T12:55:00Z
5
value 0.85814
scoring_system epss
scoring_elements 0.99386
published_at 2026-04-16T12:55:00Z
6
value 0.85814
scoring_system epss
scoring_elements 0.99378
published_at 2026-04-02T12:55:00Z
7
value 0.85814
scoring_system epss
scoring_elements 0.99379
published_at 2026-04-04T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2019-14287
6
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14287
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14287
7
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 7
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
8
reference_url https://lists.debian.org/debian-lts-announce/2019/10/msg00022.html
reference_id
reference_type
scores
url https://lists.debian.org/debian-lts-announce/2019/10/msg00022.html
9
reference_url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IP7SIOAVLSKJGMTIULX52VQUPTVSC43U/
reference_id
reference_type
scores
url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IP7SIOAVLSKJGMTIULX52VQUPTVSC43U/
10
reference_url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NPLAM57TPJQGKQMNG6RHFBLACD6K356N/
reference_id
reference_type
scores
url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NPLAM57TPJQGKQMNG6RHFBLACD6K356N/
11
reference_url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TUVAOZBYUHZS56A5FQSCDVGXT7PW7FL2/
reference_id
reference_type
scores
url https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TUVAOZBYUHZS56A5FQSCDVGXT7PW7FL2/
12
reference_url https://resources.whitesourcesoftware.com/blog-whitesource/new-vulnerability-in-sudo-cve-2019-14287
reference_id
reference_type
scores
url https://resources.whitesourcesoftware.com/blog-whitesource/new-vulnerability-in-sudo-cve-2019-14287
13
reference_url https://seclists.org/bugtraq/2019/Oct/20
reference_id
reference_type
scores
url https://seclists.org/bugtraq/2019/Oct/20
14
reference_url https://seclists.org/bugtraq/2019/Oct/21
reference_id
reference_type
scores
url https://seclists.org/bugtraq/2019/Oct/21
15
reference_url https://security.netapp.com/advisory/ntap-20191017-0003/
reference_id
reference_type
scores
url https://security.netapp.com/advisory/ntap-20191017-0003/
16
reference_url https://support.f5.com/csp/article/K53746212?utm_source=f5support&amp%3Butm_medium=RSS
reference_id
reference_type
scores
url https://support.f5.com/csp/article/K53746212?utm_source=f5support&amp%3Butm_medium=RSS
17
reference_url https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbns03976en_us
reference_id
reference_type
scores
url https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbns03976en_us
18
reference_url https://www.debian.org/security/2019/dsa-4543
reference_id
reference_type
scores
url https://www.debian.org/security/2019/dsa-4543
19
reference_url https://www.openwall.com/lists/oss-security/2019/10/15/2
reference_id
reference_type
scores
url https://www.openwall.com/lists/oss-security/2019/10/15/2
20
reference_url https://www.sudo.ws/alerts/minus_1_uid.html
reference_id
reference_type
scores
url https://www.sudo.ws/alerts/minus_1_uid.html
21
reference_url http://www.openwall.com/lists/oss-security/2019/10/14/1
reference_id
reference_type
scores
url http://www.openwall.com/lists/oss-security/2019/10/14/1
22
reference_url http://www.openwall.com/lists/oss-security/2019/10/24/1
reference_id
reference_type
scores
url http://www.openwall.com/lists/oss-security/2019/10/24/1
23
reference_url http://www.openwall.com/lists/oss-security/2019/10/29/3
reference_id
reference_type
scores
url http://www.openwall.com/lists/oss-security/2019/10/29/3
24
reference_url http://www.openwall.com/lists/oss-security/2021/09/14/2
reference_id
reference_type
scores
url http://www.openwall.com/lists/oss-security/2021/09/14/2
25
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1760531
reference_id 1760531
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1760531
26
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=942322
reference_id 942322
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=942322
27
reference_url https://security.archlinux.org/ASA-201910-9
reference_id ASA-201910-9
reference_type
scores
url https://security.archlinux.org/ASA-201910-9
28
reference_url https://security.archlinux.org/AVG-1047
reference_id AVG-1047
reference_type
scores
0
value High
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-1047
29
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:netapp:element_software_management_node:-:*:*:*:*:*:*:*
reference_id cpe:2.3:a:netapp:element_software_management_node:-:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:netapp:element_software_management_node:-:*:*:*:*:*:*:*
30
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:openshift_container_platform:4.1:*:*:*:*:*:*:*
reference_id cpe:2.3:a:redhat:openshift_container_platform:4.1:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:openshift_container_platform:4.1:*:*:*:*:*:*:*
31
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:virtualization:4.2:*:*:*:*:*:*:*
reference_id cpe:2.3:a:redhat:virtualization:4.2:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:redhat:virtualization:4.2:*:*:*:*:*:*:*
32
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:sudo_project:sudo:*:*:*:*:*:*:*:*
reference_id cpe:2.3:a:sudo_project:sudo:*:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:sudo_project:sudo:*:*:*:*:*:*:*:*
33
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:esm:*:*:*
reference_id cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:esm:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:esm:*:*:*
34
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:*
reference_id cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:*
35
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*
reference_id cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*
36
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*
reference_id cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*
37
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:19.04:*:*:*:*:*:*:*
reference_id cpe:2.3:o:canonical:ubuntu_linux:19.04:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:canonical:ubuntu_linux:19.04:*:*:*:*:*:*:*
38
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*
reference_id cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*
39
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
reference_id cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
40
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
reference_id cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
41
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*
reference_id cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*
42
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*
reference_id cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*
43
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:31:*:*:*:*:*:*:*
reference_id cpe:2.3:o:fedoraproject:fedora:31:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:fedoraproject:fedora:31:*:*:*:*:*:*:*
44
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:leap:15.0:*:*:*:*:*:*:*
reference_id cpe:2.3:o:opensuse:leap:15.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:leap:15.0:*:*:*:*:*:*:*
45
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:leap:15.1:*:*:*:*:*:*:*
reference_id cpe:2.3:o:opensuse:leap:15.1:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:opensuse:leap:15.1:*:*:*:*:*:*:*
46
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*
reference_id cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*
47
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*
reference_id cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*
48
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*
reference_id cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*
49
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_eus:7.5:*:*:*:*:*:*:*
reference_id cpe:2.3:o:redhat:enterprise_linux_eus:7.5:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_eus:7.5:*:*:*:*:*:*:*
50
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_eus:7.6:*:*:*:*:*:*:*
reference_id cpe:2.3:o:redhat:enterprise_linux_eus:7.6:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_eus:7.6:*:*:*:*:*:*:*
51
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_eus:7.7:*:*:*:*:*:*:*
reference_id cpe:2.3:o:redhat:enterprise_linux_eus:7.7:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_eus:7.7:*:*:*:*:*:*:*
52
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_eus:8.1:*:*:*:*:*:*:*
reference_id cpe:2.3:o:redhat:enterprise_linux_eus:8.1:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_eus:8.1:*:*:*:*:*:*:*
53
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_eus:8.2:*:*:*:*:*:*:*
reference_id cpe:2.3:o:redhat:enterprise_linux_eus:8.2:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_eus:8.2:*:*:*:*:*:*:*
54
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_eus:8.4:*:*:*:*:*:*:*
reference_id cpe:2.3:o:redhat:enterprise_linux_eus:8.4:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_eus:8.4:*:*:*:*:*:*:*
55
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server:5.0:*:*:*:*:*:*:*
reference_id cpe:2.3:o:redhat:enterprise_linux_server:5.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server:5.0:*:*:*:*:*:*:*
56
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*
reference_id cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*
57
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*
reference_id cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*
58
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_aus:6.5:*:*:*:*:*:*:*
reference_id cpe:2.3:o:redhat:enterprise_linux_server_aus:6.5:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_aus:6.5:*:*:*:*:*:*:*
59
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_aus:6.6:*:*:*:*:*:*:*
reference_id cpe:2.3:o:redhat:enterprise_linux_server_aus:6.6:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_aus:6.6:*:*:*:*:*:*:*
60
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_aus:7.2:*:*:*:*:*:*:*
reference_id cpe:2.3:o:redhat:enterprise_linux_server_aus:7.2:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_aus:7.2:*:*:*:*:*:*:*
61
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_aus:7.3:*:*:*:*:*:*:*
reference_id cpe:2.3:o:redhat:enterprise_linux_server_aus:7.3:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_aus:7.3:*:*:*:*:*:*:*
62
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_aus:7.4:*:*:*:*:*:*:*
reference_id cpe:2.3:o:redhat:enterprise_linux_server_aus:7.4:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_aus:7.4:*:*:*:*:*:*:*
63
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_aus:7.6:*:*:*:*:*:*:*
reference_id cpe:2.3:o:redhat:enterprise_linux_server_aus:7.6:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_aus:7.6:*:*:*:*:*:*:*
64
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_aus:7.7:*:*:*:*:*:*:*
reference_id cpe:2.3:o:redhat:enterprise_linux_server_aus:7.7:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_aus:7.7:*:*:*:*:*:*:*
65
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_aus:8.2:*:*:*:*:*:*:*
reference_id cpe:2.3:o:redhat:enterprise_linux_server_aus:8.2:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_aus:8.2:*:*:*:*:*:*:*
66
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_aus:8.4:*:*:*:*:*:*:*
reference_id cpe:2.3:o:redhat:enterprise_linux_server_aus:8.4:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_aus:8.4:*:*:*:*:*:*:*
67
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_tus:7.2:*:*:*:*:*:*:*
reference_id cpe:2.3:o:redhat:enterprise_linux_server_tus:7.2:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_tus:7.2:*:*:*:*:*:*:*
68
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_tus:7.3:*:*:*:*:*:*:*
reference_id cpe:2.3:o:redhat:enterprise_linux_server_tus:7.3:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_tus:7.3:*:*:*:*:*:*:*
69
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_tus:7.4:*:*:*:*:*:*:*
reference_id cpe:2.3:o:redhat:enterprise_linux_server_tus:7.4:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_tus:7.4:*:*:*:*:*:*:*
70
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_tus:7.6:*:*:*:*:*:*:*
reference_id cpe:2.3:o:redhat:enterprise_linux_server_tus:7.6:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_tus:7.6:*:*:*:*:*:*:*
71
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_tus:7.7:*:*:*:*:*:*:*
reference_id cpe:2.3:o:redhat:enterprise_linux_server_tus:7.7:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_tus:7.7:*:*:*:*:*:*:*
72
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_tus:8.2:*:*:*:*:*:*:*
reference_id cpe:2.3:o:redhat:enterprise_linux_server_tus:8.2:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_tus:8.2:*:*:*:*:*:*:*
73
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_tus:8.4:*:*:*:*:*:*:*
reference_id cpe:2.3:o:redhat:enterprise_linux_server_tus:8.4:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_server_tus:8.4:*:*:*:*:*:*:*
74
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*
reference_id cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*
75
reference_url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*
reference_id cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*
reference_type
scores
url https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*
76
reference_url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/local/47502.py
reference_id CVE-2019-14287
reference_type exploit
scores
url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/local/47502.py
77
reference_url https://nvd.nist.gov/vuln/detail/CVE-2019-14287
reference_id CVE-2019-14287
reference_type
scores
0
value 9.0
scoring_system cvssv2
scoring_elements AV:N/AC:L/Au:S/C:C/I:C/A:C
1
value 8.8
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
url https://nvd.nist.gov/vuln/detail/CVE-2019-14287
78
reference_url https://security.gentoo.org/glsa/202003-12
reference_id GLSA-202003-12
reference_type
scores
url https://security.gentoo.org/glsa/202003-12
79
reference_url https://access.redhat.com/errata/RHSA-2019:3197
reference_id RHSA-2019:3197
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:3197
80
reference_url https://access.redhat.com/errata/RHSA-2019:3204
reference_id RHSA-2019:3204
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:3204
81
reference_url https://access.redhat.com/errata/RHSA-2019:3205
reference_id RHSA-2019:3205
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:3205
82
reference_url https://access.redhat.com/errata/RHSA-2019:3209
reference_id RHSA-2019:3209
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:3209
83
reference_url https://access.redhat.com/errata/RHSA-2019:3219
reference_id RHSA-2019:3219
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:3219
84
reference_url https://access.redhat.com/errata/RHSA-2019:3278
reference_id RHSA-2019:3278
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:3278
85
reference_url https://access.redhat.com/errata/RHSA-2019:3694
reference_id RHSA-2019:3694
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:3694
86
reference_url https://access.redhat.com/errata/RHSA-2019:3754
reference_id RHSA-2019:3754
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:3754
87
reference_url https://access.redhat.com/errata/RHSA-2019:3755
reference_id RHSA-2019:3755
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:3755
88
reference_url https://access.redhat.com/errata/RHSA-2019:3895
reference_id RHSA-2019:3895
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:3895
89
reference_url https://access.redhat.com/errata/RHSA-2019:3916
reference_id RHSA-2019:3916
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:3916
90
reference_url https://access.redhat.com/errata/RHSA-2019:3941
reference_id RHSA-2019:3941
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:3941
91
reference_url https://access.redhat.com/errata/RHSA-2019:4191
reference_id RHSA-2019:4191
reference_type
scores
url https://access.redhat.com/errata/RHSA-2019:4191
92
reference_url https://access.redhat.com/errata/RHSA-2020:0388
reference_id RHSA-2020:0388
reference_type
scores
url https://access.redhat.com/errata/RHSA-2020:0388
93
reference_url https://usn.ubuntu.com/4154-1/
reference_id USN-4154-1
reference_type
scores
url https://usn.ubuntu.com/4154-1/
fixed_packages
0
url pkg:deb/debian/sudo@1.8.19p1-2.1%2Bdeb9u2
purl pkg:deb/debian/sudo@1.8.19p1-2.1%2Bdeb9u2
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1cuy-x9m9-p3c4
1
vulnerability VCID-3hfe-p6e3-tbe9
2
vulnerability VCID-7w9w-4whw-9bgk
3
vulnerability VCID-9fh6-mr57-wba8
4
vulnerability VCID-9y5c-e765-tqgt
5
vulnerability VCID-enw3-mnnx-myd5
6
vulnerability VCID-esf1-4zw7-5fcy
7
vulnerability VCID-ethj-8jmj-5fdh
8
vulnerability VCID-k42r-mk4h-mbbg
9
vulnerability VCID-ngg5-bqw7-bbc4
10
vulnerability VCID-p5yv-48ry-dfe7
11
vulnerability VCID-pj45-2vrx-6fcv
12
vulnerability VCID-pyfy-88dw-9ba8
13
vulnerability VCID-zd6m-f7x1-kkaa
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/sudo@1.8.19p1-2.1%252Bdeb9u2
1
url pkg:deb/debian/sudo@1.8.27-1%2Bdeb10u3
purl pkg:deb/debian/sudo@1.8.27-1%2Bdeb10u3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1cuy-x9m9-p3c4
1
vulnerability VCID-3hfe-p6e3-tbe9
2
vulnerability VCID-7w9w-4whw-9bgk
3
vulnerability VCID-9fh6-mr57-wba8
4
vulnerability VCID-enw3-mnnx-myd5
5
vulnerability VCID-esf1-4zw7-5fcy
6
vulnerability VCID-ethj-8jmj-5fdh
7
vulnerability VCID-k42r-mk4h-mbbg
8
vulnerability VCID-ngg5-bqw7-bbc4
9
vulnerability VCID-p5yv-48ry-dfe7
10
vulnerability VCID-pj45-2vrx-6fcv
11
vulnerability VCID-pyfy-88dw-9ba8
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/sudo@1.8.27-1%252Bdeb10u3
2
url pkg:deb/debian/sudo@1.9.5p2-3%2Bdeb11u1
purl pkg:deb/debian/sudo@1.9.5p2-3%2Bdeb11u1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3hfe-p6e3-tbe9
1
vulnerability VCID-e9ra-cfnz-m3hg
2
vulnerability VCID-ethj-8jmj-5fdh
3
vulnerability VCID-m9xh-9ac2-eycq
4
vulnerability VCID-ngg5-bqw7-bbc4
5
vulnerability VCID-pwmy-f5qe-s3d1
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/sudo@1.9.5p2-3%252Bdeb11u1
aliases CVE-2019-14287
risk_score 10.0
exploitability 2.0
weighted_severity 8.1
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-pj45-2vrx-6fcv
3
url VCID-zd6m-f7x1-kkaa
vulnerability_id VCID-zd6m-f7x1-kkaa
summary A vulnerability in sudo allows local users to gain root privileges.
references
0
reference_url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-1000367.json
reference_id
reference_type
scores
0
value 7.8
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
url https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-1000367.json
1
reference_url https://api.first.org/data/v1/epss?cve=CVE-2017-1000367
reference_id
reference_type
scores
0
value 0.19435
scoring_system epss
scoring_elements 0.95348
published_at 2026-04-01T12:55:00Z
1
value 0.19435
scoring_system epss
scoring_elements 0.95397
published_at 2026-04-18T12:55:00Z
2
value 0.19435
scoring_system epss
scoring_elements 0.95383
published_at 2026-04-12T12:55:00Z
3
value 0.19435
scoring_system epss
scoring_elements 0.95385
published_at 2026-04-13T12:55:00Z
4
value 0.19435
scoring_system epss
scoring_elements 0.95393
published_at 2026-04-16T12:55:00Z
5
value 0.19435
scoring_system epss
scoring_elements 0.95358
published_at 2026-04-02T12:55:00Z
6
value 0.19435
scoring_system epss
scoring_elements 0.95364
published_at 2026-04-04T12:55:00Z
7
value 0.19435
scoring_system epss
scoring_elements 0.95369
published_at 2026-04-07T12:55:00Z
8
value 0.19435
scoring_system epss
scoring_elements 0.95376
published_at 2026-04-08T12:55:00Z
9
value 0.19435
scoring_system epss
scoring_elements 0.95378
published_at 2026-04-09T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2017-1000367
2
reference_url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-1000367
reference_id
reference_type
scores
url https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-1000367
3
reference_url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
reference_id
reference_type
scores
0
value 6.9
scoring_system cvssv2
scoring_elements AV:L/AC:M/Au:N/C:C/I:C/A:C
1
value 7.8
scoring_system cvssv3
scoring_elements CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
url https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
4
reference_url https://bugzilla.redhat.com/show_bug.cgi?id=1453074
reference_id 1453074
reference_type
scores
url https://bugzilla.redhat.com/show_bug.cgi?id=1453074
5
reference_url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=863731
reference_id 863731
reference_type
scores
url https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=863731
6
reference_url https://security.archlinux.org/ASA-201705-25
reference_id ASA-201705-25
reference_type
scores
url https://security.archlinux.org/ASA-201705-25
7
reference_url https://security.archlinux.org/AVG-282
reference_id AVG-282
reference_type
scores
0
value Medium
scoring_system archlinux
scoring_elements
url https://security.archlinux.org/AVG-282
8
reference_url http://seclists.org/oss-sec/2017/q2/470
reference_id CVE-2017-1000367
reference_type exploit
scores
url http://seclists.org/oss-sec/2017/q2/470
9
reference_url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/local/42183.c
reference_id CVE-2017-1000367
reference_type exploit
scores
url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/local/42183.c
10
reference_url https://security.gentoo.org/glsa/201705-15
reference_id GLSA-201705-15
reference_type
scores
url https://security.gentoo.org/glsa/201705-15
11
reference_url https://access.redhat.com/errata/RHSA-2017:1381
reference_id RHSA-2017:1381
reference_type
scores
url https://access.redhat.com/errata/RHSA-2017:1381
12
reference_url https://access.redhat.com/errata/RHSA-2017:1382
reference_id RHSA-2017:1382
reference_type
scores
url https://access.redhat.com/errata/RHSA-2017:1382
13
reference_url https://usn.ubuntu.com/3304-1/
reference_id USN-3304-1
reference_type
scores
url https://usn.ubuntu.com/3304-1/
fixed_packages
0
url pkg:deb/debian/sudo@1.8.10p3-1%2Bdeb8u5
purl pkg:deb/debian/sudo@1.8.10p3-1%2Bdeb8u5
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1cuy-x9m9-p3c4
1
vulnerability VCID-3hfe-p6e3-tbe9
2
vulnerability VCID-71wy-ujxu-bbfj
3
vulnerability VCID-7w9w-4whw-9bgk
4
vulnerability VCID-8r7f-bt93-qqcq
5
vulnerability VCID-9a7y-2e2u-ebbf
6
vulnerability VCID-9fh6-mr57-wba8
7
vulnerability VCID-9y5c-e765-tqgt
8
vulnerability VCID-enw3-mnnx-myd5
9
vulnerability VCID-esf1-4zw7-5fcy
10
vulnerability VCID-ethj-8jmj-5fdh
11
vulnerability VCID-j63t-xqk3-p3dk
12
vulnerability VCID-k42r-mk4h-mbbg
13
vulnerability VCID-kzje-6t7q-rudw
14
vulnerability VCID-ngg5-bqw7-bbc4
15
vulnerability VCID-p5yv-48ry-dfe7
16
vulnerability VCID-pj45-2vrx-6fcv
17
vulnerability VCID-pyfy-88dw-9ba8
18
vulnerability VCID-zd6m-f7x1-kkaa
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/sudo@1.8.10p3-1%252Bdeb8u5
1
url pkg:deb/debian/sudo@1.8.27-1%2Bdeb10u3
purl pkg:deb/debian/sudo@1.8.27-1%2Bdeb10u3
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-1cuy-x9m9-p3c4
1
vulnerability VCID-3hfe-p6e3-tbe9
2
vulnerability VCID-7w9w-4whw-9bgk
3
vulnerability VCID-9fh6-mr57-wba8
4
vulnerability VCID-enw3-mnnx-myd5
5
vulnerability VCID-esf1-4zw7-5fcy
6
vulnerability VCID-ethj-8jmj-5fdh
7
vulnerability VCID-k42r-mk4h-mbbg
8
vulnerability VCID-ngg5-bqw7-bbc4
9
vulnerability VCID-p5yv-48ry-dfe7
10
vulnerability VCID-pj45-2vrx-6fcv
11
vulnerability VCID-pyfy-88dw-9ba8
resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/sudo@1.8.27-1%252Bdeb10u3
aliases CVE-2017-1000367
risk_score 10.0
exploitability 2.0
weighted_severity 7.0
resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-zd6m-f7x1-kkaa
Risk_score10.0
Resource_urlhttp://public2.vulnerablecode.io/packages/pkg:deb/debian/sudo@1.8.27-1%252Bdeb10u3