Vulnerability CVE-2023-7090
Published: 2023-12-23   Modified: 2023-12-24

Description:
A flaw was found in sudo in the handling of ipa_hostname, where ipa_hostname from /etc/sssd/sssd.conf was not propagated in sudo. Therefore, it leads to privilege mismanagement vulnerability in applications, where client hosts retain privileges even after retracting them.

 References:
https://access.redhat.com/security/cve/CVE-2023-7090
https://bugzilla.redhat.com/show_bug.cgi?id=2255723
https://www.sudo.ws/releases/legacy/#1.8.28
Copyright 2026, cxsecurity.com

 

Back to Top