Mend.io Vulnerability Database

What is a CVE vulnerability ID? icon What is a WS vulnerability ID? icon What is an MSC vulnerability ID? icon
New vulnerability? Tell us about it!
icon

We found results for “

CVE-2023-42465

Date: December 21, 2023

Sudo before 1.9.15 might allow row hammer attacks (for authentication bypass or privilege escalation) because application logic sometimes is based on not equaling an error value (instead of equaling a success value), and because the values do not resist flips of a single bit.

Language: C

Severity Score

Related Resources (16)

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/U6XMRUJCPII4MPWG43HTYR76DGLEYEFZ/
https://security-tracker.debian.org/tracker/CVE-2023-42465
https://security.gentoo.org/glsa/202401-29
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/R4Q23NHCKCLFIHSNY6KJ27GM7FSCEVXM/
https://www.sudo.ws/releases/changelog/
https://arxiv.org/abs/2309.02545
https://www.openwall.com/lists/oss-security/2023/12/21/9
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/R4Q23NHCKCLFIHSNY6KJ27GM7FSCEVXM/
http://www.openwall.com/lists/oss-security/2025/09/23/2
https://nvd.nist.gov/vuln/detail/CVE-2023-42465
https://github.com/sudo-project/sudo/releases/tag/SUDO_1_9_15
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/U6XMRUJCPII4MPWG43HTYR76DGLEYEFZ/
http://www.openwall.com/lists/oss-security/2025/09/24/6
https://security.netapp.com/advisory/ntap-20240208-0002/
https://github.com/sudo-project/sudo/commit/7873f8334c8d31031f8cfa83bd97ac6029309e4f
https://www.mend.io/vulnerability-database/CVE-2023-42465

Severity Score

Weakness Type (CWE)

Insufficient Information

NVD-CWE-noinfo

CVSS v3.1

Base Score:
Attack Vector (AV): LOCAL
Attack Complexity (AC): HIGH
Privileges Required (PR): LOW
User Interaction (UI): NONE
Scope (S): UNCHANGED
Confidentiality (C): HIGH
Integrity (I): HIGH
Availability (A): HIGH

Do you need more information?

Contact Us