VulnerableCode Package Details - pkg:deb/debian/sudo@1.8.27-1%2Bdeb10u3

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:deb/debian/sudo@1.8.27-1%2Bdeb10u3

Essentials
History (48)

purl	pkg:deb/debian/sudo@1.8.27-1%2Bdeb10u3

Next non-vulnerable version	1.9.17p2-5
Latest non-vulnerable version	1.9.17p2-5
Risk	10.0

Vulnerabilities affecting this package (12)

Vulnerability	Summary	Fixed by
VCID-1cuy-x9m9-p3c4 Aliases: CVE-2021-3156	Multiple vulnerabilities have been found in sudo, the worst of which could result in privilege escalation.	1.9.5p2-3+deb11u1 Affected by 6 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-3hfe-p6e3-tbe9 Aliases: CVE-2023-28487	Multiple vulnerabilities have been found in sudo, the worst of which can result in root privilege escalation.	1.9.13p3-1+deb12u3 Affected by 2 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-7w9w-4whw-9bgk Aliases: CVE-2021-23240	Multiple vulnerabilities have been found in sudo, the worst of which could result in privilege escalation.	1.9.5p2-3+deb11u1 Affected by 6 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-9fh6-mr57-wba8 Aliases: CVE-2023-7090	sudo: Improper handling of ipa_hostname leads to privilege mismanagement	1.9.5p2-3+deb11u1 Affected by 6 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-enw3-mnnx-myd5 Aliases: CVE-2023-22809	A vulnerability has been discovered in sudo which could result in root privilege escalation.	1.9.5p2-3+deb11u1 Affected by 6 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-esf1-4zw7-5fcy Aliases: CVE-2019-19232	sudo: attacker with access to a Runas ALL sudoer account can impersonate a nonexistent user	1.9.5p2-3+deb11u1 Affected by 6 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-ethj-8jmj-5fdh Aliases: CVE-2023-28486	Multiple vulnerabilities have been found in sudo, the worst of which can result in root privilege escalation.	1.9.13p3-1+deb12u3 Affected by 2 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-k42r-mk4h-mbbg Aliases: CVE-2021-23239	Multiple vulnerabilities have been found in sudo, the worst of which could result in privilege escalation.	1.9.5p2-3+deb11u1 Affected by 6 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-ngg5-bqw7-bbc4 Aliases: CVE-2025-32462	Multiple vulnerabilities have been discovered in sudo, the worst of which could result in privilege escalation.	1.9.13p3-1+deb12u3 Affected by 2 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-p5yv-48ry-dfe7 Aliases: CVE-2019-18634	Multiple vulnerabilities have been found in sudo, the worst of which could result in privilege escalation.	1.9.5p2-3+deb11u1 Affected by 6 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-pj45-2vrx-6fcv Aliases: CVE-2019-14287	Multiple vulnerabilities have been found in sudo, the worst of which could result in privilege escalation.	1.9.5p2-3+deb11u1 Affected by 6 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}
VCID-pyfy-88dw-9ba8 Aliases: CVE-2019-19234	sudo: by using ! character in the shadow file instead of a password hash can access to a run as all sudoer account	1.9.5p2-3+deb11u1 Affected by 6 other vulnerabilities. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }} {{ fixed_by_vuln.vulnerability_id }}

Vulnerabilities fixed by this package (4)

Vulnerability	Summary	Aliases
VCID-1cuy-x9m9-p3c4	Multiple vulnerabilities have been found in sudo, the worst of which could result in privilege escalation.	CVE-2021-3156
VCID-9y5c-e765-tqgt	A vulnerability in sudo allows local users to gain root privileges.	CVE-2017-1000368
VCID-pj45-2vrx-6fcv	Multiple vulnerabilities have been found in sudo, the worst of which could result in privilege escalation.	CVE-2019-14287
VCID-zd6m-f7x1-kkaa	A vulnerability in sudo allows local users to gain root privileges.	CVE-2017-1000367

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-16T00:51:48.162145+00:00	Debian Oval Importer	Fixing	VCID-zd6m-f7x1-kkaa	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-16T00:23:16.985823+00:00	Debian Oval Importer	Affected by	VCID-1cuy-x9m9-p3c4	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T23:13:18.052496+00:00	Debian Oval Importer	Affected by	VCID-3hfe-p6e3-tbe9	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T23:04:18.587482+00:00	Debian Oval Importer	Affected by	VCID-pj45-2vrx-6fcv	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T22:08:56.737479+00:00	Debian Oval Importer	Affected by	VCID-7w9w-4whw-9bgk	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T21:41:15.668616+00:00	Debian Oval Importer	Affected by	VCID-9fh6-mr57-wba8	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T21:20:02.002084+00:00	Debian Oval Importer	Affected by	VCID-pyfy-88dw-9ba8	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T20:35:21.806348+00:00	Debian Oval Importer	Affected by	VCID-enw3-mnnx-myd5	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T19:46:42.642689+00:00	Debian Oval Importer	Affected by	VCID-ngg5-bqw7-bbc4	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T18:08:14.958050+00:00	Debian Oval Importer	Fixing	VCID-9y5c-e765-tqgt	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T18:05:38.408118+00:00	Debian Oval Importer	Affected by	VCID-p5yv-48ry-dfe7	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T17:24:35.367574+00:00	Debian Oval Importer	Affected by	VCID-esf1-4zw7-5fcy	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T15:51:52.310393+00:00	Debian Oval Importer	Affected by	VCID-k42r-mk4h-mbbg	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T15:39:50.525715+00:00	Debian Oval Importer	Affected by	VCID-ethj-8jmj-5fdh	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T15:15:10.484332+00:00	Debian Oval Importer	Fixing	VCID-1cuy-x9m9-p3c4	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	38.4.0
2026-04-15T14:44:11.426270+00:00	Debian Oval Importer	Fixing	VCID-pj45-2vrx-6fcv	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	38.4.0
2026-04-12T00:24:14.479258+00:00	Debian Oval Importer	Fixing	VCID-zd6m-f7x1-kkaa	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T23:56:47.952420+00:00	Debian Oval Importer	Affected by	VCID-1cuy-x9m9-p3c4	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T22:49:07.597789+00:00	Debian Oval Importer	Affected by	VCID-3hfe-p6e3-tbe9	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T22:40:25.882366+00:00	Debian Oval Importer	Affected by	VCID-pj45-2vrx-6fcv	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T21:46:48.997210+00:00	Debian Oval Importer	Affected by	VCID-7w9w-4whw-9bgk	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T21:20:03.204278+00:00	Debian Oval Importer	Affected by	VCID-9fh6-mr57-wba8	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T20:59:37.799818+00:00	Debian Oval Importer	Affected by	VCID-pyfy-88dw-9ba8	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T20:16:35.930303+00:00	Debian Oval Importer	Affected by	VCID-enw3-mnnx-myd5	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T19:29:05.943733+00:00	Debian Oval Importer	Affected by	VCID-ngg5-bqw7-bbc4	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T17:53:49.879781+00:00	Debian Oval Importer	Fixing	VCID-9y5c-e765-tqgt	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T17:51:17.884415+00:00	Debian Oval Importer	Affected by	VCID-p5yv-48ry-dfe7	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T17:10:58.506020+00:00	Debian Oval Importer	Affected by	VCID-esf1-4zw7-5fcy	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T15:39:31.121389+00:00	Debian Oval Importer	Affected by	VCID-k42r-mk4h-mbbg	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T15:27:41.530749+00:00	Debian Oval Importer	Affected by	VCID-ethj-8jmj-5fdh	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T15:03:30.031429+00:00	Debian Oval Importer	Fixing	VCID-1cuy-x9m9-p3c4	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	38.3.0
2026-04-11T14:32:29.054266+00:00	Debian Oval Importer	Fixing	VCID-pj45-2vrx-6fcv	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	38.3.0
2026-04-08T23:54:51.944022+00:00	Debian Oval Importer	Fixing	VCID-zd6m-f7x1-kkaa	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T23:28:32.454555+00:00	Debian Oval Importer	Affected by	VCID-1cuy-x9m9-p3c4	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T22:23:46.440912+00:00	Debian Oval Importer	Affected by	VCID-3hfe-p6e3-tbe9	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T22:15:33.883859+00:00	Debian Oval Importer	Affected by	VCID-pj45-2vrx-6fcv	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T21:24:32.427781+00:00	Debian Oval Importer	Affected by	VCID-7w9w-4whw-9bgk	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T20:58:45.897763+00:00	Debian Oval Importer	Affected by	VCID-9fh6-mr57-wba8	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T20:38:54.396939+00:00	Debian Oval Importer	Affected by	VCID-pyfy-88dw-9ba8	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T19:57:33.958689+00:00	Debian Oval Importer	Affected by	VCID-enw3-mnnx-myd5	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T19:12:34.110453+00:00	Debian Oval Importer	Affected by	VCID-ngg5-bqw7-bbc4	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T17:40:41.875035+00:00	Debian Oval Importer	Fixing	VCID-9y5c-e765-tqgt	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T17:38:19.981763+00:00	Debian Oval Importer	Affected by	VCID-p5yv-48ry-dfe7	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T16:59:59.067153+00:00	Debian Oval Importer	Affected by	VCID-esf1-4zw7-5fcy	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T15:33:26.101633+00:00	Debian Oval Importer	Affected by	VCID-k42r-mk4h-mbbg	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T15:22:04.202030+00:00	Debian Oval Importer	Affected by	VCID-ethj-8jmj-5fdh	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T14:59:01.008088+00:00	Debian Oval Importer	Fixing	VCID-1cuy-x9m9-p3c4	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	38.1.0
2026-04-07T23:05:45.999229+00:00	Debian Oval Importer	Fixing	VCID-pj45-2vrx-6fcv	https://www.debian.org/security/oval/oval-definitions-buster.xml.bz2	38.1.0