Sudo before 1.9.17p1 allows local users to obtain root access because /etc/nsswitch.conf from a user-controlled directory is used with the --chroot option.
2025-06-30T21:15:30.257
2025-07-17T15:56:53.310
Analyzed
CVSSv3.1: 9.3 (CRITICAL)
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Application | sudo_project | sudo | < 1.9.17 | Yes |
| Application | sudo_project | sudo | 1.9.17 | Yes |
| Operating System | canonical | ubuntu_linux | 22.04 | Yes |
| Operating System | canonical | ubuntu_linux | 24.04 | Yes |
| Operating System | canonical | ubuntu_linux | 24.10 | Yes |
| Operating System | canonical | ubuntu_linux | 25.04 | Yes |
| Operating System | debian | debian_linux | 11.0 | Yes |
| Operating System | debian | debian_linux | 12.0 | Yes |
| Operating System | debian | debian_linux | 13.0 | Yes |
| Operating System | opensuse | leap | 15.6 | Yes |
| Operating System | redhat | enterprise_linux | 10.0 | Yes |
| Operating System | suse | linux_enterprise_desktop | 15 | Yes |
| Operating System | suse | linux_enterprise_desktop | 15 | Yes |
| Operating System | suse | linux_enterprise_real_time | 15.0 | Yes |
| Operating System | suse | linux_enterprise_real_time | 15.0 | Yes |
| Operating System | suse | linux_enterprise_real_time | 15.0 | Yes |
| Operating System | suse | linux_enterprise_server_for_sap | 12 | Yes |
| Operating System | suse | linux_enterprise_server_for_sap | 12 | Yes |