← back
CVE-2019-14287

CVE-2019-14287

EPSS 63.9%
In Sudo before 1.8.28, an attacker with access to a Runas ALL sudoer account can bypass certain policy blacklists and session PAM modules, and can cause incorrect logging, by invoking sudo with a crafted user ID. For example, this allows bypass of !root configuration, and USER= logging, for a "sudo -u \#$((0xffffffff))" command.
Affected products
n/a · n/a
public PoCs found29
githubgithub.com/n0w4n/CVE-2019-1428713githubgithub.com/CMNatic/Dockerized-CVE-2019-142877githubgithub.com/shallvhack/Sudo-Security-Bypass-CVE-2019-142873githubgithub.com/MariliaMeira/CVE-2019-142871githubgithub.com/FauxFaux/sudo-cve-2019-142871githubgithub.com/CashWilliams/CVE-2019-14287-demo1githubgithub.com/DewmiApsara/CVE-2019-142870githubgithub.com/M108Falcon/Sudo-CVE-2019-142870githubgithub.com/edsonjt81/CVE-2019-14287-0githubgithub.com/DularaAnushka/Linux-Privilege-Escalation-using-Sudo-Rights0githubgithub.com/h3x0v3rl0rd/CVE-2019-142870githubgithub.com/Hasintha-98/Sudo-Vulnerability-Exploit-CVE-2019-142870githubgithub.com/Ijinleife/CVE-2019-142870githubgithub.com/lemonadern/poc-cve-2019-142870githubgithub.com/HivinManjuSri/ubuntu-cve-2019-14287-patch-manager0githubgithub.com/ShianTrish/sudo-Security-Bypass-vulnerability-CVE-2019-142870githubgithub.com/gurneesh/CVE-2019-14287-write-up0githubgithub.com/huang919/cve-2019-14287-PPT0githubgithub.com/ejlevin99/Sudo-Security-Bypass-Vulnerability0githubgithub.com/thinuri99/Sudo-Security-Bypass-Vulnerability-CVE-2019-14287-0githubgithub.com/janod313/-CVE-2019-14287-SUDO-bypass-vulnerability0githubgithub.com/HussyCool/CVE-2019-14287-IT18030372-0githubgithub.com/wenyu1999/sudo-0githubgithub.com/Sindadziy/cve-2019-142870githubgithub.com/Sindayifu/CVE-2019-14287-CVE-2014-62710githubgithub.com/axax002/sudo-vulnerability-CVE-2019-142870githubgithub.com/sachinthadesilva/Exploit-CVE-2019-142870exploitdbwww.exploit-db.com/exploits/47502unverifiedcve_referencepacketstormsecurity.com/files/154853/Slackware-Security-Advisory-sudo-Updates.htmlunverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00042.htmlhttp://lists.opensuse.org/opensuse-security-announce/2019-10/msg00047.htmlhttp://packetstormsecurity.com/files/154853/Slackware-Security-Advisory-sudo-Updates.htmlhttps://access.redhat.com/errata/RHBA-2019:3248https://access.redhat.com/errata/RHSA-2019:3197https://access.redhat.com/errata/RHSA-2019:3204https://access.redhat.com/errata/RHSA-2019:3205https://access.redhat.com/errata/RHSA-2019:3209https://access.redhat.com/errata/RHSA-2019:3219https://access.redhat.com/errata/RHSA-2019:3278https://access.redhat.com/errata/RHSA-2019:3694https://access.redhat.com/errata/RHSA-2019:3754