CVE
CVE-2021-3156
| CVE ID |
CVE-2021-3156
|
|---|---|
| CVSS Score |
7.8
|
| Operating System | |
| Affected Versions |
CentOS 6
|
| Patched Versions |
1.8.6p3-29_ol001.el6.3
|
| Patch Date |
|
| Last Updated Date | |
| Vector String |
Additional Information
NVD Listing: https://www.cve.org/CVERecord?id=CVE-2021-3156
Sudo before 1.9.5p2 contains an off-by-one error that can result in a heap-based buffer overflow, which allows privilege escalation to root via "sudoedit -s" and a command-line argument that ends with a single backslash character.