Vulnerability in N/a
CVE-2021-3156
Sudo before 1.9.5p2 contains an off-by-one error that can result in a heap-based buffer overflow, which allows privilege escalation to root via "sudoedit -s" and a command-line argument that ends with a single backslash character.
EPSS: 0.926 (99.8th percentile) — read the EPSS interpretation.
Affected products
- N/a — versions n/a
CISA KEV (Known Exploited Vulnerabilities)
This CVE is on the CISA KEV catalog, added on . CISA KEV inclusion means CISA has confirmed in-the-wild exploitation; US federal agencies are required to remediate within a published due date.
BOD 22-01 due date: .
Required action: Apply updates per vendor instructions.
Public proof-of-concept exploits
References
- [debian-lts-announce] 20210126 [SECURITY] [DLA 2534-1] sudo security update (mailing-list)
- 20210126 Baron Samedit: Heap-based buffer overflow in Sudo (CVE-2021-3156) (mailing-list)
- [oss-security] 20210126 Baron Samedit: Heap-based buffer overflow in Sudo (CVE-2021-3156) (mailing-list)
- GLSA-202101-33 (vendor-advisory)
- DSA-4839 (vendor-advisory)
- FEDORA-2021-2cb63d912a (vendor-advisory)
- FEDORA-2021-8840cbdccd (vendor-advisory)
- [oss-security] 20210127 Re: Baron Samedit: Heap-based buffer overflow in Sudo (CVE-2021-3156) (mailing-list)
- [oss-security] 20210127 Re: Baron Samedit: Heap-based buffer overflow in Sudo (CVE-2021-3156) (mailing-list)
- 20210129 Sudo Privilege Escalation Vulnerability Affecting Cisco Products: January 2021 (vendor-advisory)
Frequently asked questions
- What is CVE-2021-3156?
- CVE-2021-3156 is a vulnerability in N/a. Published 2021-01-26.
- Is CVE-2021-3156 known to be exploited?
- Yes. CVE-2021-3156 is listed in the CISA Known Exploited Vulnerabilities catalog (added 2022-04-06), indicating it is being actively exploited. 413 public proof-of-concept repositories are indexed.