Skip to content
← Browse CVEs

CVE-2021-3156

High · CVSS 7.8EPSS 99.3%CISA KEVCWE-193

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Sudo before 1.9.5p2 contains an off-by-one error that can result in a heap-based buffer overflow, which allows privilege escalation to root via "sudoedit -s" and a command-line argument that ends with a single backslash character.

References

NVD MITRE CVE.org CISA KEV

Published

Community ground truth

Community verdict

2 verdicts
Not a real issue

Includes TruePositive's curated baseline from public sources — community verdicts accrue on top.

to add your verdict.

Community real-world severity: High (High 2) — CVSS base score 7.8

In line with its CVSS base score.

Field notes & remediation

Verdicts are the quick signal — notes are the evidence and fixes behind them.

  • 0
    Field note · Tomáš NovákCurated

    Heap overflow in sudo via sudoedit argv parsing → root. Local, but affects a near-ubiquitous binary and exploits are reliable across many distros. Standard privesc on any shell you land.

  • 0
    Remediation · Diego RamírezCurated

    Update sudo to 1.9.5p2+. Check sudoedit -s '\' \perl -e 'print "A" x 65536'`` style PoCs are no longer crashing after patch.