all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

sudoedit (`sudo -e`) security flaw (CVE-2023-22809)

Add to bookmarks
Jan. 19, 2023, 2:30 p.m. | nabbisen

DEV Community dev.to




Security vulnerability


A new sudo vulnerability was found. It was on sudoedit (sudo -e) flaw. With it, attackers can edit arbitrary files, and therefore machines were at the risk of the pwned and having information steeled.





CVE


CVE-2023-22809





Solution


If sudo is 1.8 or greater, it is recommended to update it to the latest version (1.9.12p2) released today, on 2023-01-19.





Temporary workaround


In case that you can't update it right now,


the official website describes there is a …

attackers case cve files flaw information latest machines official pwned risk security security vulnerability solution sudo sudoedit update version vulnerability website workaround

Visit resource

More from dev.to / DEV Community

AWS GUARDDUTY an hour ago | dev.to
accounts amazon amazon guardduty anomaly detection +21
Understanding HTTP and HTTPS: How They Work and Secure Data Transmission 2 hours ago | dev.to
browsers clients cybersecurity data +19
DevPod in Action 3 hours ago | dev.to
action amp analysis application +18
Day 30 of 30-Day .NET Challenge: XML v/s JSON Serialization 4 hours ago | dev.to
article beginners challenge code +13
Understanding .htpasswd: A Comprehensive Guide 4 hours ago | dev.to
apache authentication basic file +13
Securing the Cloud #27 5 hours ago | dev.to
career career development cloud cloud security +19
Security news weekly round-up - 19th April 2024 12 hours ago | dev.to
addresses administrator a network anonymous +20
Data Security and Cryptography on AWS 15 hours ago | dev.to
address aws challenges cloud +18
Mina Protocol: small chain, big dreams 16 hours ago | dev.to
big blockchain build community +12

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Information Security Engineers

@ D. E. Shaw Research | New York City
View on infosec-jobs.com

Cyber Security Architect - SR

@ ERCOT | Taylor, TX
View on infosec-jobs.com

SOC Analyst

@ Wix | Tel Aviv, Israel
View on infosec-jobs.com

Associate Director, SIEM & Detection Engineering(remote)

@ Humana | Remote US
View on infosec-jobs.com

Senior DevSecOps Architect

@ Computacenter | Birmingham, GB, B37 7YS
View on infosec-jobs.com
View more jobs