Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
sudo: It was discovered that the default sudo configuration on Red Hat Enterprise Linux and possibly other Linux implementations preserves the value of INPUTRC which could lead to information disclosure. A local user with sudo access to a restricted program that uses readline could use this flaw to read content from specially formatted files with elevated privileges provided by sudo.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
多款Red Hat产品sudo 信息泄露漏洞
Vulnerability Description
Sudo是软件开发者Todd C. Miller所研发的一套用于类Unix操作系统下并允许用户通过安全的方式使用特殊的权限执行命令的程序。 多款Red Hat产品中的sudo默认配置存在安全漏洞。攻击者可借助提升地权限利用该漏洞读取特定格式文件的内容。以下产品受到影响:Red Hat Enterprise Linux Desktop (v. 7);HPC Node (v. 7);Server (v. 7);Workstation (v. 7)。
CVSS Information
N/A
Vulnerability Type
N/A