VulnerableCode Vulnerability Details - VCID-49cf-c1kh-27cf

Staging Environment: Content and features may be unstable or change without notice.

Search for vulnerabilities

Vulnerability details: VCID-49cf-c1kh-27cf

Essentials
Severities (12)
References (9)
Severity details (0)
Exploits (1)
EPSS
History (1)

Vulnerability ID	VCID-49cf-c1kh-27cf
Aliases	CVE-2012-0809
Summary	Two vulnerabilities have been discovered in sudo, allowing local attackers to possibly gain escalated privileges.
Status	Published
Exploitability	2.0
Weighted Severity	0.4
Risk	0.8
Affected and Fixed Packages	Package Details

Weaknesses (2)

CWE-134	Use of Externally-Controlled Format String
CWE-119	Improper Restriction of Operations within the Bounds of a Memory Buffer

System	Score	Found at
epss	0.45602	https://api.first.org/data/v1/epss?cve=CVE-2012-0809
epss	0.45602	https://api.first.org/data/v1/epss?cve=CVE-2012-0809
epss	0.45602	https://api.first.org/data/v1/epss?cve=CVE-2012-0809
epss	0.45602	https://api.first.org/data/v1/epss?cve=CVE-2012-0809
epss	0.45602	https://api.first.org/data/v1/epss?cve=CVE-2012-0809
epss	0.45602	https://api.first.org/data/v1/epss?cve=CVE-2012-0809
epss	0.45602	https://api.first.org/data/v1/epss?cve=CVE-2012-0809
epss	0.45602	https://api.first.org/data/v1/epss?cve=CVE-2012-0809
epss	0.45602	https://api.first.org/data/v1/epss?cve=CVE-2012-0809
epss	0.45602	https://api.first.org/data/v1/epss?cve=CVE-2012-0809
epss	0.45602	https://api.first.org/data/v1/epss?cve=CVE-2012-0809
epss	0.45602	https://api.first.org/data/v1/epss?cve=CVE-2012-0809

Reference id	Reference type	URL
		https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-0809.json
		https://api.first.org/data/v1/epss?cve=CVE-2012-0809
		https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-0809
657985		https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=657985
784443		https://bugzilla.redhat.com/show_bug.cgi?id=784443
CVE-2012-0809;OSVDB-78659	Exploit	http://seclists.org/fulldisclosure/2012/Jan/att-590/advisory_sudo.txt
CVE-2012-0809;OSVDB-78659	Exploit	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/local/25134.c
GLSA-201203-06		https://security.gentoo.org/glsa/201203-06
OSVDB-78659;CVE-2012-0809	Exploit	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/18436.txt

Data source	Exploit-DB
Date added	May 1, 2013
Description	sudo 1.8.0 < 1.8.3p1 - 'sudo_debug' glibc FORTIFY_SOURCE Bypass + Privilege Escalation
Ransomware campaign use	Known
Source publication date	May 1, 2013
Exploit type	local
Platform	linux
Source update date	June 21, 2017
Source URL	http://seclists.org/fulldisclosure/2012/Jan/att-590/advisory_sudo.txt

There are no known vectors.

Exploit Prediction Scoring System (EPSS)

Percentile	0.97591
EPSS Score	0.45602
Published At	April 1, 2026, 12:55 p.m.

Date	Actor	Action	Source	VulnerableCode Version
2026-04-01T13:11:47.076012+00:00	Gentoo Importer	Import	https://security.gentoo.org/glsa/201203-06	38.0.0