CVE-2021-23239 – The sudoedit personality of Sudo before 1.9.5 may allow a local unprivileged user to perfo …

Vuln ID: CVE-2021-23239

Published:  2021-01-12  09:15:14Z

Description: The sudoedit personality of Sudo before 1.9.5 may allow a local unprivileged user to perform arbitrary directory-existence tests by winning a sudo_edit.c race condition in replacing a user-controlled directory by a symlink to an arbitrary path.

Source: NVD.NIST.GOV