Overview A new vulnerability has been discovered within sudo versions 1.8.0 through 1.9.12.p1. This issue occurs because the sudoedit feature mishandles the contents of user controlled environment variables. If one of these environment variables contains a “–” every following argument will be taken as a file to process.
CVE-2023-22809
- Post author By Merrill
- Post date
- Categories In CVE
- No Comments on CVE-2023-22809