CVE-2012-2337

NONE EPSS 31.8%
Published May 18, 201214y ago · Modified Jun 16, 20262w ago
Find Similar
Published May 18, 2012 14y ago
Last Modified Jun 16, 2026 2w ago

Description

sudo 1.6.x and 1.7.x before 1.7.9p1, and 1.8.x before 1.8.4p5, does not properly support configurations that use a netmask syntax, which allows local users to bypass intended command restrictions in opportunistic circumstances by executing a command on a host that has an IPv4 address.

Threat Intelligence

EPSS Exploit Probability
31.8% percentile
Exploit & Patch Status
No Known Exploit
No Patch Available

Weaknesses 1

CWE-264

Affected Products 19

VendorProductVersionRange
todd_millersudo1.6any
todd_millersudo1.6.1any
todd_millersudo1.6.2any
todd_millersudo1.6.2p3any
todd_millersudo1.6.3any
todd_millersudo1.6.3_p7any
todd_millersudo1.6.4any
todd_millersudo1.6.4p2any
todd_millersudo1.6.5any
todd_millersudo1.6.6any
todd_millersudo1.6.7any
todd_millersudo1.6.7p5any
todd_millersudo1.6.8any
todd_millersudo1.6.8p12any
todd_millersudo1.6.9any
todd_millersudo1.6.9p20any
todd_millersudo1.6.9p21any
todd_millersudo1.6.9p22any
todd_millersudo1.6.9p23any

References 11

Remediation

No remediation data recorded yet

Check vendor advisories and the NVD entry for patch availability.