Django REST framework

Lookup for vulnerabilities affecting packages.

Vulnerability_id VCID-9a7y-2e2u-ebbf

Summary

sudo is vulnerable to an escalation of privileges via a symlink
    attack.

Aliases

alias	CVE-2015-5602

Fixed_packages

url pkg:deb/debian/sudo@1.8.5p2-1%2Bnmu3%2Bdeb7u1

purl pkg:deb/debian/sudo@1.8.5p2-1%2Bnmu3%2Bdeb7u1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1cuy-x9m9-p3c4

vulnerability	VCID-3hfe-p6e3-tbe9

vulnerability	VCID-71wy-ujxu-bbfj

vulnerability	VCID-7w9w-4whw-9bgk

vulnerability	VCID-8r7f-bt93-qqcq

vulnerability	VCID-9a7y-2e2u-ebbf

vulnerability	VCID-9fh6-mr57-wba8

vulnerability	VCID-9y5c-e765-tqgt

vulnerability	VCID-enw3-mnnx-myd5

vulnerability	VCID-esf1-4zw7-5fcy

vulnerability	VCID-ethj-8jmj-5fdh

vulnerability	VCID-j63t-xqk3-p3dk

vulnerability	VCID-k42r-mk4h-mbbg

vulnerability	VCID-kzje-6t7q-rudw

vulnerability	VCID-ngg5-bqw7-bbc4

vulnerability	VCID-p5yv-48ry-dfe7

vulnerability	VCID-pj45-2vrx-6fcv

vulnerability	VCID-pyfy-88dw-9ba8

vulnerability	VCID-zd6m-f7x1-kkaa

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/sudo@1.8.5p2-1%252Bnmu3%252Bdeb7u1

url pkg:deb/debian/sudo@1.8.10p3-1%2Bdeb8u5

purl pkg:deb/debian/sudo@1.8.10p3-1%2Bdeb8u5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1cuy-x9m9-p3c4

vulnerability	VCID-3hfe-p6e3-tbe9

vulnerability	VCID-71wy-ujxu-bbfj

vulnerability	VCID-7w9w-4whw-9bgk

vulnerability	VCID-8r7f-bt93-qqcq

vulnerability	VCID-9a7y-2e2u-ebbf

vulnerability	VCID-9fh6-mr57-wba8

vulnerability	VCID-9y5c-e765-tqgt

vulnerability	VCID-enw3-mnnx-myd5

vulnerability	VCID-esf1-4zw7-5fcy

vulnerability	VCID-ethj-8jmj-5fdh

vulnerability	VCID-j63t-xqk3-p3dk

vulnerability	VCID-k42r-mk4h-mbbg

vulnerability	VCID-kzje-6t7q-rudw

vulnerability	VCID-ngg5-bqw7-bbc4

vulnerability	VCID-p5yv-48ry-dfe7

vulnerability	VCID-pj45-2vrx-6fcv

vulnerability	VCID-pyfy-88dw-9ba8

vulnerability	VCID-zd6m-f7x1-kkaa

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/sudo@1.8.10p3-1%252Bdeb8u5

url	pkg:deb/debian/sudo@1.8.15-1.1?distro=trixie
purl	pkg:deb/debian/sudo@1.8.15-1.1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sudo@1.8.15-1.1%3Fdistro=trixie

url pkg:deb/debian/sudo@1.8.19p1-2.1%2Bdeb9u2

purl pkg:deb/debian/sudo@1.8.19p1-2.1%2Bdeb9u2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1cuy-x9m9-p3c4

vulnerability	VCID-3hfe-p6e3-tbe9

vulnerability	VCID-7w9w-4whw-9bgk

vulnerability	VCID-9fh6-mr57-wba8

vulnerability	VCID-9y5c-e765-tqgt

vulnerability	VCID-enw3-mnnx-myd5

vulnerability	VCID-esf1-4zw7-5fcy

vulnerability	VCID-ethj-8jmj-5fdh

vulnerability	VCID-k42r-mk4h-mbbg

vulnerability	VCID-ngg5-bqw7-bbc4

vulnerability	VCID-p5yv-48ry-dfe7

vulnerability	VCID-pj45-2vrx-6fcv

vulnerability	VCID-pyfy-88dw-9ba8

vulnerability	VCID-zd6m-f7x1-kkaa

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/sudo@1.8.19p1-2.1%252Bdeb9u2

url pkg:deb/debian/sudo@1.9.5p2-3%2Bdeb11u1?distro=trixie

purl pkg:deb/debian/sudo@1.9.5p2-3%2Bdeb11u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-e9ra-cfnz-m3hg

vulnerability	VCID-m9xh-9ac2-eycq

vulnerability	VCID-pwmy-f5qe-s3d1

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/sudo@1.9.5p2-3%252Bdeb11u1%3Fdistro=trixie

url pkg:deb/debian/sudo@1.9.13p3-1%2Bdeb12u3?distro=trixie

purl pkg:deb/debian/sudo@1.9.13p3-1%2Bdeb12u3?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-m9xh-9ac2-eycq

vulnerability	VCID-pwmy-f5qe-s3d1

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/sudo@1.9.13p3-1%252Bdeb12u3%3Fdistro=trixie

url pkg:deb/debian/sudo@1.9.16p2-3%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/sudo@1.9.16p2-3%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-pwmy-f5qe-s3d1

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/sudo@1.9.16p2-3%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/sudo@1.9.17p2-5?distro=trixie
purl	pkg:deb/debian/sudo@1.9.17p2-5?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/sudo@1.9.17p2-5%3Fdistro=trixie

url	pkg:ebuild/app-admin/sudo@1.8.15-r1
purl	pkg:ebuild/app-admin/sudo@1.8.15-r1
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:ebuild/app-admin/sudo@1.8.15-r1

Affected_packages

url pkg:deb/debian/sudo@1.5.4-4

purl pkg:deb/debian/sudo@1.5.4-4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1cuy-x9m9-p3c4

vulnerability	VCID-1s26-jrut-puf4

vulnerability	VCID-2b4p-nehx-eyae

vulnerability	VCID-2jvq-feqm-rueb

vulnerability	VCID-3hfe-p6e3-tbe9

vulnerability	VCID-49cf-c1kh-27cf

vulnerability	VCID-5h2a-syy6-67bn

vulnerability	VCID-71wy-ujxu-bbfj

vulnerability	VCID-7duq-41ag-z7bk

vulnerability	VCID-7w9w-4whw-9bgk

vulnerability	VCID-8r7f-bt93-qqcq

vulnerability	VCID-9a7y-2e2u-ebbf

vulnerability	VCID-9fh6-mr57-wba8

vulnerability	VCID-9whc-9uum-sbfq

vulnerability	VCID-9x82-hwuz-kycf

vulnerability	VCID-9y5c-e765-tqgt

vulnerability	VCID-a4dr-ann4-hffe

vulnerability	VCID-buyq-ggky-qbhh

vulnerability	VCID-cc9y-weez-hkhu

vulnerability	VCID-e6kf-aksq-ffbe

vulnerability	VCID-enw3-mnnx-myd5

vulnerability	VCID-esf1-4zw7-5fcy

vulnerability	VCID-ethj-8jmj-5fdh

vulnerability	VCID-fant-y91b-rubf

vulnerability	VCID-hac2-bg9e-bfbr

vulnerability	VCID-j63t-xqk3-p3dk

vulnerability	VCID-j8m8-5uq3-a7a2

vulnerability	VCID-jf9c-5due-6feb

vulnerability	VCID-k42r-mk4h-mbbg

vulnerability	VCID-kzje-6t7q-rudw

vulnerability	VCID-mfty-hg4q-x7hp

vulnerability	VCID-ngg5-bqw7-bbc4

vulnerability	VCID-p5yv-48ry-dfe7

vulnerability	VCID-pj45-2vrx-6fcv

vulnerability	VCID-pyfy-88dw-9ba8

vulnerability	VCID-qrfs-x7be-u7dx

vulnerability	VCID-qs5z-f2ew-n7fv

vulnerability	VCID-rm1k-u2gs-efbx

vulnerability	VCID-t9g1-j9ej-ufcq

vulnerability	VCID-xg63-xrvm-nkbr

vulnerability	VCID-zd6m-f7x1-kkaa

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/sudo@1.5.4-4

url pkg:deb/debian/sudo@1.5.6p2-2

purl pkg:deb/debian/sudo@1.5.6p2-2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1cuy-x9m9-p3c4

vulnerability	VCID-1s26-jrut-puf4

vulnerability	VCID-2b4p-nehx-eyae

vulnerability	VCID-2jvq-feqm-rueb

vulnerability	VCID-3hfe-p6e3-tbe9

vulnerability	VCID-49cf-c1kh-27cf

vulnerability	VCID-5h2a-syy6-67bn

vulnerability	VCID-71wy-ujxu-bbfj

vulnerability	VCID-7duq-41ag-z7bk

vulnerability	VCID-7w9w-4whw-9bgk

vulnerability	VCID-8r7f-bt93-qqcq

vulnerability	VCID-9a7y-2e2u-ebbf

vulnerability	VCID-9fh6-mr57-wba8

vulnerability	VCID-9whc-9uum-sbfq

vulnerability	VCID-9x82-hwuz-kycf

vulnerability	VCID-9y5c-e765-tqgt

vulnerability	VCID-a4dr-ann4-hffe

vulnerability	VCID-buyq-ggky-qbhh

vulnerability	VCID-cc9y-weez-hkhu

vulnerability	VCID-e6kf-aksq-ffbe

vulnerability	VCID-enw3-mnnx-myd5

vulnerability	VCID-esf1-4zw7-5fcy

vulnerability	VCID-ethj-8jmj-5fdh

vulnerability	VCID-fant-y91b-rubf

vulnerability	VCID-hac2-bg9e-bfbr

vulnerability	VCID-j63t-xqk3-p3dk

vulnerability	VCID-j8m8-5uq3-a7a2

vulnerability	VCID-jf9c-5due-6feb

vulnerability	VCID-k42r-mk4h-mbbg

vulnerability	VCID-kzje-6t7q-rudw

vulnerability	VCID-mfty-hg4q-x7hp

vulnerability	VCID-ngg5-bqw7-bbc4

vulnerability	VCID-p5yv-48ry-dfe7

vulnerability	VCID-pj45-2vrx-6fcv

vulnerability	VCID-pyfy-88dw-9ba8

vulnerability	VCID-qrfs-x7be-u7dx

vulnerability	VCID-qs5z-f2ew-n7fv

vulnerability	VCID-rm1k-u2gs-efbx

vulnerability	VCID-t9g1-j9ej-ufcq

vulnerability	VCID-xg63-xrvm-nkbr

vulnerability	VCID-zd6m-f7x1-kkaa

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/sudo@1.5.6p2-2

url pkg:deb/debian/sudo@1.6.2p2-2.2

purl pkg:deb/debian/sudo@1.6.2p2-2.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1cuy-x9m9-p3c4

vulnerability	VCID-1s26-jrut-puf4

vulnerability	VCID-2b4p-nehx-eyae

vulnerability	VCID-2jvq-feqm-rueb

vulnerability	VCID-3hfe-p6e3-tbe9

vulnerability	VCID-49cf-c1kh-27cf

vulnerability	VCID-5h2a-syy6-67bn

vulnerability	VCID-71wy-ujxu-bbfj

vulnerability	VCID-7duq-41ag-z7bk

vulnerability	VCID-7w9w-4whw-9bgk

vulnerability	VCID-8r7f-bt93-qqcq

vulnerability	VCID-9a7y-2e2u-ebbf

vulnerability	VCID-9fh6-mr57-wba8

vulnerability	VCID-9whc-9uum-sbfq

vulnerability	VCID-9x82-hwuz-kycf

vulnerability	VCID-9y5c-e765-tqgt

vulnerability	VCID-a4dr-ann4-hffe

vulnerability	VCID-buyq-ggky-qbhh

vulnerability	VCID-cc9y-weez-hkhu

vulnerability	VCID-e6kf-aksq-ffbe

vulnerability	VCID-enw3-mnnx-myd5

vulnerability	VCID-esf1-4zw7-5fcy

vulnerability	VCID-ethj-8jmj-5fdh

vulnerability	VCID-fant-y91b-rubf

vulnerability	VCID-hac2-bg9e-bfbr

vulnerability	VCID-j63t-xqk3-p3dk

vulnerability	VCID-j8m8-5uq3-a7a2

vulnerability	VCID-jf9c-5due-6feb

vulnerability	VCID-k42r-mk4h-mbbg

vulnerability	VCID-kzje-6t7q-rudw

vulnerability	VCID-mfty-hg4q-x7hp

vulnerability	VCID-ngg5-bqw7-bbc4

vulnerability	VCID-p5yv-48ry-dfe7

vulnerability	VCID-pj45-2vrx-6fcv

vulnerability	VCID-pyfy-88dw-9ba8

vulnerability	VCID-qrfs-x7be-u7dx

vulnerability	VCID-qs5z-f2ew-n7fv

vulnerability	VCID-rm1k-u2gs-efbx

vulnerability	VCID-t9g1-j9ej-ufcq

vulnerability	VCID-xg63-xrvm-nkbr

vulnerability	VCID-zd6m-f7x1-kkaa

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/sudo@1.6.2p2-2.2

url pkg:deb/debian/sudo@1.6.6-1.3

purl pkg:deb/debian/sudo@1.6.6-1.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1cuy-x9m9-p3c4

vulnerability	VCID-1s26-jrut-puf4

vulnerability	VCID-2b4p-nehx-eyae

vulnerability	VCID-2jvq-feqm-rueb

vulnerability	VCID-3hfe-p6e3-tbe9

vulnerability	VCID-49cf-c1kh-27cf

vulnerability	VCID-5h2a-syy6-67bn

vulnerability	VCID-71wy-ujxu-bbfj

vulnerability	VCID-7duq-41ag-z7bk

vulnerability	VCID-7w9w-4whw-9bgk

vulnerability	VCID-8r7f-bt93-qqcq

vulnerability	VCID-9a7y-2e2u-ebbf

vulnerability	VCID-9fh6-mr57-wba8

vulnerability	VCID-9whc-9uum-sbfq

vulnerability	VCID-9x82-hwuz-kycf

vulnerability	VCID-9y5c-e765-tqgt

vulnerability	VCID-a4dr-ann4-hffe

vulnerability	VCID-buyq-ggky-qbhh

vulnerability	VCID-cc9y-weez-hkhu

vulnerability	VCID-e6kf-aksq-ffbe

vulnerability	VCID-enw3-mnnx-myd5

vulnerability	VCID-esf1-4zw7-5fcy

vulnerability	VCID-ethj-8jmj-5fdh

vulnerability	VCID-fant-y91b-rubf

vulnerability	VCID-hac2-bg9e-bfbr

vulnerability	VCID-j63t-xqk3-p3dk

vulnerability	VCID-j8m8-5uq3-a7a2

vulnerability	VCID-jf9c-5due-6feb

vulnerability	VCID-k42r-mk4h-mbbg

vulnerability	VCID-kzje-6t7q-rudw

vulnerability	VCID-mfty-hg4q-x7hp

vulnerability	VCID-ngg5-bqw7-bbc4

vulnerability	VCID-p5yv-48ry-dfe7

vulnerability	VCID-pj45-2vrx-6fcv

vulnerability	VCID-pyfy-88dw-9ba8

vulnerability	VCID-qrfs-x7be-u7dx

vulnerability	VCID-qs5z-f2ew-n7fv

vulnerability	VCID-rm1k-u2gs-efbx

vulnerability	VCID-t9g1-j9ej-ufcq

vulnerability	VCID-xg63-xrvm-nkbr

vulnerability	VCID-zd6m-f7x1-kkaa

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/sudo@1.6.6-1.3

url pkg:deb/debian/sudo@1.6.8p7-1.4

purl pkg:deb/debian/sudo@1.6.8p7-1.4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1cuy-x9m9-p3c4

vulnerability	VCID-2b4p-nehx-eyae

vulnerability	VCID-2jvq-feqm-rueb

vulnerability	VCID-3hfe-p6e3-tbe9

vulnerability	VCID-49cf-c1kh-27cf

vulnerability	VCID-5h2a-syy6-67bn

vulnerability	VCID-71wy-ujxu-bbfj

vulnerability	VCID-7duq-41ag-z7bk

vulnerability	VCID-7w9w-4whw-9bgk

vulnerability	VCID-8r7f-bt93-qqcq

vulnerability	VCID-9a7y-2e2u-ebbf

vulnerability	VCID-9fh6-mr57-wba8

vulnerability	VCID-9whc-9uum-sbfq

vulnerability	VCID-9x82-hwuz-kycf

vulnerability	VCID-9y5c-e765-tqgt

vulnerability	VCID-a4dr-ann4-hffe

vulnerability	VCID-buyq-ggky-qbhh

vulnerability	VCID-cc9y-weez-hkhu

vulnerability	VCID-e6kf-aksq-ffbe

vulnerability	VCID-enw3-mnnx-myd5

vulnerability	VCID-esf1-4zw7-5fcy

vulnerability	VCID-ethj-8jmj-5fdh

vulnerability	VCID-fant-y91b-rubf

vulnerability	VCID-hac2-bg9e-bfbr

vulnerability	VCID-j63t-xqk3-p3dk

vulnerability	VCID-j8m8-5uq3-a7a2

vulnerability	VCID-jf9c-5due-6feb

vulnerability	VCID-k42r-mk4h-mbbg

vulnerability	VCID-kzje-6t7q-rudw

vulnerability	VCID-mfty-hg4q-x7hp

vulnerability	VCID-ngg5-bqw7-bbc4

vulnerability	VCID-p5yv-48ry-dfe7

vulnerability	VCID-pj45-2vrx-6fcv

vulnerability	VCID-pyfy-88dw-9ba8

vulnerability	VCID-qrfs-x7be-u7dx

vulnerability	VCID-qs5z-f2ew-n7fv

vulnerability	VCID-rm1k-u2gs-efbx

vulnerability	VCID-t9g1-j9ej-ufcq

vulnerability	VCID-zd6m-f7x1-kkaa

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/sudo@1.6.8p7-1.4

url pkg:deb/debian/sudo@1.6.8p12-4

purl pkg:deb/debian/sudo@1.6.8p12-4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1cuy-x9m9-p3c4

vulnerability	VCID-2b4p-nehx-eyae

vulnerability	VCID-2jvq-feqm-rueb

vulnerability	VCID-3hfe-p6e3-tbe9

vulnerability	VCID-49cf-c1kh-27cf

vulnerability	VCID-5h2a-syy6-67bn

vulnerability	VCID-71wy-ujxu-bbfj

vulnerability	VCID-7duq-41ag-z7bk

vulnerability	VCID-7w9w-4whw-9bgk

vulnerability	VCID-8r7f-bt93-qqcq

vulnerability	VCID-9a7y-2e2u-ebbf

vulnerability	VCID-9fh6-mr57-wba8

vulnerability	VCID-9whc-9uum-sbfq

vulnerability	VCID-9x82-hwuz-kycf

vulnerability	VCID-9y5c-e765-tqgt

vulnerability	VCID-buyq-ggky-qbhh

vulnerability	VCID-e6kf-aksq-ffbe

vulnerability	VCID-enw3-mnnx-myd5

vulnerability	VCID-esf1-4zw7-5fcy

vulnerability	VCID-ethj-8jmj-5fdh

vulnerability	VCID-fant-y91b-rubf

vulnerability	VCID-j63t-xqk3-p3dk

vulnerability	VCID-j8m8-5uq3-a7a2

vulnerability	VCID-jf9c-5due-6feb

vulnerability	VCID-k42r-mk4h-mbbg

vulnerability	VCID-kzje-6t7q-rudw

vulnerability	VCID-mfty-hg4q-x7hp

vulnerability	VCID-ngg5-bqw7-bbc4

vulnerability	VCID-p5yv-48ry-dfe7

vulnerability	VCID-pj45-2vrx-6fcv

vulnerability	VCID-pyfy-88dw-9ba8

vulnerability	VCID-qrfs-x7be-u7dx

vulnerability	VCID-qs5z-f2ew-n7fv

vulnerability	VCID-t9g1-j9ej-ufcq

vulnerability	VCID-zd6m-f7x1-kkaa

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/sudo@1.6.8p12-4

url pkg:deb/debian/sudo@1.6.9p17-3

purl pkg:deb/debian/sudo@1.6.9p17-3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1cuy-x9m9-p3c4

vulnerability	VCID-2b4p-nehx-eyae

vulnerability	VCID-2jvq-feqm-rueb

vulnerability	VCID-3hfe-p6e3-tbe9

vulnerability	VCID-49cf-c1kh-27cf

vulnerability	VCID-5h2a-syy6-67bn

vulnerability	VCID-71wy-ujxu-bbfj

vulnerability	VCID-7duq-41ag-z7bk

vulnerability	VCID-7w9w-4whw-9bgk

vulnerability	VCID-8r7f-bt93-qqcq

vulnerability	VCID-9a7y-2e2u-ebbf

vulnerability	VCID-9fh6-mr57-wba8

vulnerability	VCID-9whc-9uum-sbfq

vulnerability	VCID-9x82-hwuz-kycf

vulnerability	VCID-9y5c-e765-tqgt

vulnerability	VCID-buyq-ggky-qbhh

vulnerability	VCID-e6kf-aksq-ffbe

vulnerability	VCID-enw3-mnnx-myd5

vulnerability	VCID-esf1-4zw7-5fcy

vulnerability	VCID-ethj-8jmj-5fdh

vulnerability	VCID-fant-y91b-rubf

vulnerability	VCID-j63t-xqk3-p3dk

vulnerability	VCID-j8m8-5uq3-a7a2

vulnerability	VCID-k42r-mk4h-mbbg

vulnerability	VCID-kzje-6t7q-rudw

vulnerability	VCID-mfty-hg4q-x7hp

vulnerability	VCID-ngg5-bqw7-bbc4

vulnerability	VCID-p5yv-48ry-dfe7

vulnerability	VCID-pj45-2vrx-6fcv

vulnerability	VCID-pyfy-88dw-9ba8

vulnerability	VCID-qs5z-f2ew-n7fv

vulnerability	VCID-t9g1-j9ej-ufcq

vulnerability	VCID-zd6m-f7x1-kkaa

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/sudo@1.6.9p17-3

url pkg:deb/debian/sudo@1.7.4p4-2.squeeze.4

purl pkg:deb/debian/sudo@1.7.4p4-2.squeeze.4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1cuy-x9m9-p3c4

vulnerability	VCID-2jvq-feqm-rueb

vulnerability	VCID-3hfe-p6e3-tbe9

vulnerability	VCID-49cf-c1kh-27cf

vulnerability	VCID-5h2a-syy6-67bn

vulnerability	VCID-71wy-ujxu-bbfj

vulnerability	VCID-7w9w-4whw-9bgk

vulnerability	VCID-8r7f-bt93-qqcq

vulnerability	VCID-9a7y-2e2u-ebbf

vulnerability	VCID-9fh6-mr57-wba8

vulnerability	VCID-9whc-9uum-sbfq

vulnerability	VCID-9x82-hwuz-kycf

vulnerability	VCID-9y5c-e765-tqgt

vulnerability	VCID-e6kf-aksq-ffbe

vulnerability	VCID-enw3-mnnx-myd5

vulnerability	VCID-esf1-4zw7-5fcy

vulnerability	VCID-ethj-8jmj-5fdh

vulnerability	VCID-j63t-xqk3-p3dk

vulnerability	VCID-k42r-mk4h-mbbg

vulnerability	VCID-kzje-6t7q-rudw

vulnerability	VCID-mfty-hg4q-x7hp

vulnerability	VCID-ngg5-bqw7-bbc4

vulnerability	VCID-p5yv-48ry-dfe7

vulnerability	VCID-pj45-2vrx-6fcv

vulnerability	VCID-pyfy-88dw-9ba8

vulnerability	VCID-t9g1-j9ej-ufcq

vulnerability	VCID-zd6m-f7x1-kkaa

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/sudo@1.7.4p4-2.squeeze.4

url pkg:deb/debian/sudo@1.7.4p4-2.squeeze.6

purl pkg:deb/debian/sudo@1.7.4p4-2.squeeze.6

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1cuy-x9m9-p3c4

vulnerability	VCID-2jvq-feqm-rueb

vulnerability	VCID-3hfe-p6e3-tbe9

vulnerability	VCID-49cf-c1kh-27cf

vulnerability	VCID-5h2a-syy6-67bn

vulnerability	VCID-71wy-ujxu-bbfj

vulnerability	VCID-7w9w-4whw-9bgk

vulnerability	VCID-8r7f-bt93-qqcq

vulnerability	VCID-9a7y-2e2u-ebbf

vulnerability	VCID-9fh6-mr57-wba8

vulnerability	VCID-9whc-9uum-sbfq

vulnerability	VCID-9x82-hwuz-kycf

vulnerability	VCID-9y5c-e765-tqgt

vulnerability	VCID-e6kf-aksq-ffbe

vulnerability	VCID-enw3-mnnx-myd5

vulnerability	VCID-esf1-4zw7-5fcy

vulnerability	VCID-ethj-8jmj-5fdh

vulnerability	VCID-j63t-xqk3-p3dk

vulnerability	VCID-k42r-mk4h-mbbg

vulnerability	VCID-kzje-6t7q-rudw

vulnerability	VCID-mfty-hg4q-x7hp

vulnerability	VCID-ngg5-bqw7-bbc4

vulnerability	VCID-p5yv-48ry-dfe7

vulnerability	VCID-pj45-2vrx-6fcv

vulnerability	VCID-pyfy-88dw-9ba8

vulnerability	VCID-t9g1-j9ej-ufcq

vulnerability	VCID-zd6m-f7x1-kkaa

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/sudo@1.7.4p4-2.squeeze.6

url pkg:deb/debian/sudo@1.8.5p2-1%2Bnmu3%2Bdeb7u1

purl pkg:deb/debian/sudo@1.8.5p2-1%2Bnmu3%2Bdeb7u1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1cuy-x9m9-p3c4

vulnerability	VCID-3hfe-p6e3-tbe9

vulnerability	VCID-71wy-ujxu-bbfj

vulnerability	VCID-7w9w-4whw-9bgk

vulnerability	VCID-8r7f-bt93-qqcq

vulnerability	VCID-9a7y-2e2u-ebbf

vulnerability	VCID-9fh6-mr57-wba8

vulnerability	VCID-9y5c-e765-tqgt

vulnerability	VCID-enw3-mnnx-myd5

vulnerability	VCID-esf1-4zw7-5fcy

vulnerability	VCID-ethj-8jmj-5fdh

vulnerability	VCID-j63t-xqk3-p3dk

vulnerability	VCID-k42r-mk4h-mbbg

vulnerability	VCID-kzje-6t7q-rudw

vulnerability	VCID-ngg5-bqw7-bbc4

vulnerability	VCID-p5yv-48ry-dfe7

vulnerability	VCID-pj45-2vrx-6fcv

vulnerability	VCID-pyfy-88dw-9ba8

vulnerability	VCID-zd6m-f7x1-kkaa

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/sudo@1.8.5p2-1%252Bnmu3%252Bdeb7u1

url pkg:deb/debian/sudo@1.8.10p3-1%2Bdeb8u2

purl pkg:deb/debian/sudo@1.8.10p3-1%2Bdeb8u2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1cuy-x9m9-p3c4

vulnerability	VCID-3hfe-p6e3-tbe9

vulnerability	VCID-71wy-ujxu-bbfj

vulnerability	VCID-7w9w-4whw-9bgk

vulnerability	VCID-8r7f-bt93-qqcq

vulnerability	VCID-9a7y-2e2u-ebbf

vulnerability	VCID-9fh6-mr57-wba8

vulnerability	VCID-9y5c-e765-tqgt

vulnerability	VCID-enw3-mnnx-myd5

vulnerability	VCID-esf1-4zw7-5fcy

vulnerability	VCID-ethj-8jmj-5fdh

vulnerability	VCID-j63t-xqk3-p3dk

vulnerability	VCID-k42r-mk4h-mbbg

vulnerability	VCID-kzje-6t7q-rudw

vulnerability	VCID-ngg5-bqw7-bbc4

vulnerability	VCID-p5yv-48ry-dfe7

vulnerability	VCID-pj45-2vrx-6fcv

vulnerability	VCID-pyfy-88dw-9ba8

vulnerability	VCID-zd6m-f7x1-kkaa

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/sudo@1.8.10p3-1%252Bdeb8u2

url pkg:deb/debian/sudo@1.8.10p3-1%2Bdeb8u5

purl pkg:deb/debian/sudo@1.8.10p3-1%2Bdeb8u5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1cuy-x9m9-p3c4

vulnerability	VCID-3hfe-p6e3-tbe9

vulnerability	VCID-71wy-ujxu-bbfj

vulnerability	VCID-7w9w-4whw-9bgk

vulnerability	VCID-8r7f-bt93-qqcq

vulnerability	VCID-9a7y-2e2u-ebbf

vulnerability	VCID-9fh6-mr57-wba8

vulnerability	VCID-9y5c-e765-tqgt

vulnerability	VCID-enw3-mnnx-myd5

vulnerability	VCID-esf1-4zw7-5fcy

vulnerability	VCID-ethj-8jmj-5fdh

vulnerability	VCID-j63t-xqk3-p3dk

vulnerability	VCID-k42r-mk4h-mbbg

vulnerability	VCID-kzje-6t7q-rudw

vulnerability	VCID-ngg5-bqw7-bbc4

vulnerability	VCID-p5yv-48ry-dfe7

vulnerability	VCID-pj45-2vrx-6fcv

vulnerability	VCID-pyfy-88dw-9ba8

vulnerability	VCID-zd6m-f7x1-kkaa

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/sudo@1.8.10p3-1%252Bdeb8u5

References

reference_url	http://bugzilla.sudo.ws/show_bug.cgi?id=707
reference_id
reference_type
scores
url	http://bugzilla.sudo.ws/show_bug.cgi?id=707

reference_url	http://lists.fedoraproject.org/pipermail/package-announce/2015-November/171024.html
reference_id
reference_type
scores
url	http://lists.fedoraproject.org/pipermail/package-announce/2015-November/171024.html

reference_url	http://lists.fedoraproject.org/pipermail/package-announce/2015-November/171054.html
reference_id
reference_type
scores
url	http://lists.fedoraproject.org/pipermail/package-announce/2015-November/171054.html

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-5602.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2015-5602.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2015-5602

reference_id

reference_type

scores

value	0.05506
scoring_system	epss
scoring_elements	0.90252
published_at	2026-04-18T12:55:00Z

value	0.05506
scoring_system	epss
scoring_elements	0.9019
published_at	2026-04-01T12:55:00Z

value	0.05506
scoring_system	epss
scoring_elements	0.90193
published_at	2026-04-02T12:55:00Z

value	0.05506
scoring_system	epss
scoring_elements	0.90205
published_at	2026-04-04T12:55:00Z

value	0.05506
scoring_system	epss
scoring_elements	0.9021
published_at	2026-04-07T12:55:00Z

value	0.05506
scoring_system	epss
scoring_elements	0.90226
published_at	2026-04-08T12:55:00Z

value	0.05506
scoring_system	epss
scoring_elements	0.90232
published_at	2026-04-09T12:55:00Z

value	0.05506
scoring_system	epss
scoring_elements	0.90241
published_at	2026-04-11T12:55:00Z

value	0.05506
scoring_system	epss
scoring_elements	0.9024
published_at	2026-04-12T12:55:00Z

value	0.05506
scoring_system	epss
scoring_elements	0.90234
published_at	2026-04-13T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2015-5602

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5602
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5602

reference_url	https://www.exploit-db.com/exploits/37710/
reference_id
reference_type
scores
url	https://www.exploit-db.com/exploits/37710/

reference_url	http://www.debian.org/security/2016/dsa-3440
reference_id
reference_type
scores
url	http://www.debian.org/security/2016/dsa-3440

reference_url	http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html
reference_id
reference_type
scores
url	http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html

reference_url	http://www.securitytracker.com/id/1034392
reference_id
reference_type
scores
url	http://www.securitytracker.com/id/1034392

reference_url	http://www.sudo.ws/stable.html#1.8.15
reference_id
reference_type
scores
url	http://www.sudo.ws/stable.html#1.8.15

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1277426
reference_id	1277426
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1277426

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=804149
reference_id	804149
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=804149

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:sudo_project:sudo::::::::
reference_id	cpe:2.3:a:sudo_project:sudo::::::::
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:sudo_project:sudo::::::::

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2015-5602

reference_id

CVE-2015-5602

reference_type

scores

value	7.2
scoring_system	cvssv2
scoring_elements	AV:L/AC:L/Au:N/C:C/I:C/A:C

url

https://nvd.nist.gov/vuln/detail/CVE-2015-5602

reference_url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/local/37710.txt
reference_id	CVE-2015-5602;OSVDB-125548
reference_type	exploit
scores
url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/local/37710.txt

reference_url	https://security.gentoo.org/glsa/201606-13
reference_id	GLSA-201606-13
reference_type
scores
url	https://security.gentoo.org/glsa/201606-13

Weaknesses

cwe_id	59
name	Improper Link Resolution Before File Access ('Link Following')
description	The product attempts to access a file based on the filename, but it does not properly prevent that filename from identifying a link or shortcut that resolves to an unintended resource.

cwe_id	264
name	Permissions, Privileges, and Access Controls
description	Weaknesses in this category are related to the management of permissions, privileges, and other security features that are used to perform access control.

Exploits

date_added	2015-07-29
description	Sudo 1.8.14 (RHEL 5/6/7 / Ubuntu) - 'Sudoedit' Unauthorized Privilege Escalation
required_action	`null`
due_date	`null`
notes	`null`
known_ransomware_campaign_use	`true`
source_date_published	2015-07-28
exploit_type	local
platform	linux
source_date_updated	2017-06-21
data_source	Exploit-DB
source_url

Severity_range_score 7.2 - 7.2

Exploitability 2.0

Weighted_severity 6.5

Risk_score 10.0

Resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-9a7y-2e2u-ebbf

Vulnerability Instance