CVE-2023-7090

CWE-269 — Improper Privilege Management6 documents6 sources

Severity

8.8HIGH

EPSS

0.1%

top 75.93%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Sudo Project Sudo

Timeline

PublishedDec 23

Latest updateDec 24

Description

A flaw was found in sudo in the handling of ipa_hostname, where ipa_hostname from /etc/sssd/sssd.conf was not propagated in sudo. Therefore, it leads to privilege mismanagement vulnerability in applications, where client hosts retain privileges even after retracting them.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:L/I:L/A:LExploitability: 2.3 | Impact: 3.7

Affected Packages2 packages

▶NVDsudo_project/sudo< 1.8.28

▶Debiansudo< 1.8.28p1-1+3

Patches

Patch: bugzilla.redhat.com ↗Patch: bugzilla.redhat.com ↗

🔴Vulnerability Details

GHSA

GHSA-8mrc-5phh-m9pc: A flaw was found in sudo in the handling of ipa_hostname, where ipa_hostname from /etc/sssd/sssd↗2023-12-24

▶

CVEList

Sudo: improper handling of ipa_hostname leads to privilege mismanagement↗2023-12-23

▶

OSV

CVE-2023-7090: A flaw was found in sudo in the handling of ipa_hostname, where ipa_hostname from /etc/sssd/sssd↗2023-12-23

▶

📋Vendor Advisories

Debian

CVE-2023-7090: sudo - A flaw was found in sudo in the handling of ipa_hostname, where ipa_hostname fro...↗2023

▶

Red Hat

sudo: Improper handling of ipa_hostname leads to privilege mismanagement↗2019-08-15

▶