Yuting Fan

1 exploit Active since Apr 2022
CVE-2022-29527 WRITEUP HIGH WRITEUP
Amazon AWS amazon-ssm-agent < 3.1.1208.0 - Privilege Escalation via World-Writable Sudoers File
Amazon AWS amazon-ssm-agent before 3.1.1208.0 creates a world-writable sudoers file, which allows local attackers to inject Sudo rules and escalate privileges to root. This occurs in certain situations involving a race condition.
CVSS 7.0