QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2023-42465

Back to search

CVE-2023-42465

Published: Dec 22, 2023

Modified: Nov 4, 2025

PUBLISHED

Description

Sudo before 1.9.15 might allow row hammer attacks (for authentication bypass or privilege escalation) because application logic sometimes is based on not equaling an error value (instead of equaling a success value), and because the values do not resist flips of a single bit.

VendorProductVersions

n/a

n/a

affected
n/a

References

GLSA-202401-29
vendor-advisory
FEDORA-2024-cdccda4f62
vendor-advisory
FEDORA-2024-6fa5af9ea8
vendor-advisory

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now