CVE-2019-14287

Common vulnerabilities & exposures (CVE)

CVE database CVE database blogpost Release & EoL database

Published at: - 17-10-2019 08:15

Last modified: - 18-04-2022 05:45

Total changes: - 3

Description

In Sudo before 1.8.28, an attacker with access to a Runas ALL sudoer account can bypass certain policy blacklists and session PAM modules, and can cause incorrect logging, by invoking sudo with a crafted user ID. For example, this allows bypass of !root configuration, and USER= logging, for a "sudo -u \#$((0xffffffff))" command.

Common Vulnerability Scoring System (CVSS)

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Low

Attack complexity

Network

Attack vector

High

Availability

High

Confidentiality

High

Integrity

Low

Privileges required

Unchanged

Scope

None

User interaction

8.8

Base score

2.8

5.9

Exploitability score

Impact score

Verification logic

vendor=sudo_project AND product=sudo AND versionEndExcluding=1.8.28

vendor=fedoraproject AND product=fedora AND version=29

vendor=fedoraproject AND product=fedora AND version=30

vendor=fedoraproject AND product=fedora AND version=31

vendor=Debian AND product=debian_linux AND version=8.0

vendor=Debian AND product=debian_linux AND version=9.0

vendor=Debian AND product=debian_linux AND version=10.0

vendor=opensuse AND product=leap AND version=15.0

vendor=opensuse AND product=leap AND version=15.1

vendor=canonical AND product=ubuntu_linux AND version=12.04 AND software_edition=esm

vendor=canonical AND product=ubuntu_linux AND version=14.04 AND software_edition=esm

vendor=canonical AND product=ubuntu_linux AND version=16.04 AND software_edition=lts

vendor=canonical AND product=ubuntu_linux AND version=18.04 AND software_edition=lts

vendor=canonical AND product=ubuntu_linux AND version=19.04

vendor=netapp AND product=element_software_management_node AND version=-

vendor=Red Hat Enterprise Linux AND product=openshift_container_platform AND version=4.1

vendor=Red Hat Enterprise Linux AND product=virtualization AND version=4.2

vendor=Red Hat Enterprise Linux AND product=enterprise_linux AND version=8.0

vendor=Red Hat Enterprise Linux AND product=enterprise_linux_desktop AND version=6.0

vendor=Red Hat Enterprise Linux AND product=enterprise_linux_desktop AND version=7.0

vendor=Red Hat Enterprise Linux AND product=enterprise_linux_eus AND version=7.5

vendor=Red Hat Enterprise Linux AND product=enterprise_linux_eus AND version=7.6

vendor=Red Hat Enterprise Linux AND product=enterprise_linux_eus AND version=7.7

vendor=Red Hat Enterprise Linux AND product=enterprise_linux_eus AND version=8.1

vendor=Red Hat Enterprise Linux AND product=enterprise_linux_eus AND version=8.2

vendor=Red Hat Enterprise Linux AND product=enterprise_linux_eus AND version=8.4

vendor=Red Hat Enterprise Linux AND product=enterprise_linux_server AND version=5.0

vendor=Red Hat Enterprise Linux AND product=enterprise_linux_server AND version=6.0

vendor=Red Hat Enterprise Linux AND product=enterprise_linux_server AND version=7.0

vendor=Red Hat Enterprise Linux AND product=enterprise_linux_server_aus AND version=6.5

vendor=Red Hat Enterprise Linux AND product=enterprise_linux_server_aus AND version=6.6

vendor=Red Hat Enterprise Linux AND product=enterprise_linux_server_aus AND version=7.2

vendor=Red Hat Enterprise Linux AND product=enterprise_linux_server_aus AND version=7.3

vendor=Red Hat Enterprise Linux AND product=enterprise_linux_server_aus AND version=7.4

vendor=Red Hat Enterprise Linux AND product=enterprise_linux_server_aus AND version=7.6

vendor=Red Hat Enterprise Linux AND product=enterprise_linux_server_aus AND version=7.7

vendor=Red Hat Enterprise Linux AND product=enterprise_linux_server_aus AND version=8.2

vendor=Red Hat Enterprise Linux AND product=enterprise_linux_server_aus AND version=8.4

vendor=Red Hat Enterprise Linux AND product=enterprise_linux_server_tus AND version=7.2

vendor=Red Hat Enterprise Linux AND product=enterprise_linux_server_tus AND version=7.3

vendor=Red Hat Enterprise Linux AND product=enterprise_linux_server_tus AND version=7.4

vendor=Red Hat Enterprise Linux AND product=enterprise_linux_server_tus AND version=7.6

vendor=Red Hat Enterprise Linux AND product=enterprise_linux_server_tus AND version=7.7

vendor=Red Hat Enterprise Linux AND product=enterprise_linux_server_tus AND version=8.2

vendor=Red Hat Enterprise Linux AND product=enterprise_linux_server_tus AND version=8.4

vendor=Red Hat Enterprise Linux AND product=enterprise_linux_workstation AND version=6.0

vendor=Red Hat Enterprise Linux AND product=enterprise_linux_workstation AND version=7.0

Reference

FEDORA-2019-9cb221f2be-Mailing List, Third Party Advisory
http://packetstormsecurity.com/files/154853/Slackware-Security-Advisory-sudo-Updates.html
20191015 [slackware-security] sudo (SSA:2019-287-01)-Issue Tracking, Mailing List, Third Party Advisory
[oss-security] 20191014 Sudo: CVE-2019-14287-Exploit, Mailing List, Third Party Advisory
USN-4154-1-Third Party Advisory
20191015 [SECURITY] [DSA 4543-1] sudo security update-Issue Tracking, Mailing List, Third Party Advisory
openSUSE-SU-2019:2333-Mailing List, Third Party Advisory
https://security.netapp.com/advisory/ntap-20191017-0003/
DSA-4543-Third Party Advisory
[oss-security] 20191015 Re: Sudo: CVE-2019-14287-Mailing List, Patch, Third Party Advisory
https://www.sudo.ws/alerts/minus_1_uid.html
openSUSE-SU-2019:2316-Mailing List, Third Party Advisory
[debian-lts-announce] 20191017 [SECURITY] [DLA 1964-1] sudo security update-Mailing List, Third Party Advisory
FEDORA-2019-67998e9f7e-Mailing List, Third Party Advisory
https://support.f5.com/csp/article/K53746212?utm_source=f5support&amp;utm_medium=RSS
[oss-security] 20191023 Membership application for linux-distros - VMware-Mailing List, Third Party Advisory
RHSA-2019:3205-Third Party Advisory
RHSA-2019:3197-Third Party Advisory
RHSA-2019:3204-Third Party Advisory
RHSA-2019:3219-Third Party Advisory
RHSA-2019:3209-Third Party Advisory
[oss-security] 20191029 Re: Membership application for linux-distros - VMware-Mailing List, Third Party Advisory
FEDORA-2019-72755db9c7-Mailing List, Third Party Advisory
RHSA-2019:3278-Third Party Advisory
https://resources.whitesourcesoftware.com/blog-whitesource/new-vulnerability-in-sudo-cve-2019-14287
RHSA-2019:3694-Third Party Advisory
RHSA-2019:3754-Third Party Advisory
RHSA-2019:3755-Third Party Advisory
RHSA-2019:3895-Third Party Advisory
RHSA-2019:3916-Third Party Advisory
RHBA-2019:3248-Third Party Advisory
RHSA-2019:3941-Third Party Advisory
RHSA-2019:4191-Third Party Advisory
https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbns03976en_us
RHSA-2020:0388-Third Party Advisory
GLSA-202003-12-Third Party Advisory
[oss-security] 20210914 Re: Oracle Solaris membership in the distros list-Mailing List, Third Party Advisory

Keywords

CVE-2019-14287

Common vulnerabilities & exposures (CVE)

Description

Common Vulnerability Scoring System (CVSS)

Verification logic

Reference

NVD

CVE-2019-14287

CVE

Common vulnerabilities & exposures

CVSS

Common vulnerability scoring system

Security

Vulnerabilities

Exposures