CVE-2021-3156: Baron Samedit (sudo Heap Overflow)

Score: 7.8
HIGH
Published: 2021-01-26Affected: sudo 1.8.2 through 1.9.5p1CWE-122 β†—

What is Baron Samedit?

A heap-based buffer overflow in sudo that allows any unprivileged user to gain root privileges on default Linux installations. The vulnerability has been present in sudo since July 2011 β€” a 10-year-old bug in one of Linux's most critical utilities.

Impact & Exploitation

Affects nearly every Linux distribution. Enables local privilege escalation to root without password. Present for 10 years in sudo β€” installed on virtually every Unix-like system.

Related Resources

πŸ” Related CWE Entries

πŸ“– Security Guides

πŸ”— External References

Precogs Logo

Precogs Research

This vulnerability intelligence report was analyzed and enriched by the Precogs AI Security Team. Our researchers continuously monitor emerging threats across AI code, LLM pipelines, and binary architectures to ensure accurate real-time remediation guidance.

Base Score

CVSS7.8
SeverityHIGH
CWECWE-122
Published2021-01-26

Tags

linuxsudoprivilege-escalationheap-overflow

Quick Links

Is your system affected?

Precogs AI detects Baron Samedit (sudo Heap Overflow) in compiled binaries and firmware β€” even without source code.

Request Deep Analysis

Is Your System Still Exposed to Critical CVEs?

Vulnerabilities like CVE-2021-3156 Baron Samedit (sudo Heap Overflow) don’t just exist in source code β€” they persist in compiled binaries, containers, and embedded systems. Precogs AI detects vulnerable components across your entire stack β€” even when source code isn’t available.

Request Deep AnalysisBook a demo