Pending AI Enrichment

This vulnerability was recently detected via the live feed and has not yet been processed by Precogs AI's context enrichment engine. The data below represents raw telemetric data.

RAW NVD TELEMETRY

CVE-2023-22809

CVSS Base Score
7.8 HIGH
Primary Weakness
CWE-269
Published Date
Jan 18, 2023
Data Source
NVD API

In Sudo before 1.9.12p2, the sudoedit (aka -e) feature mishandles extra arguments passed in the user-provided environment variables (SUDO_EDITOR, VISUAL, and EDITOR), allowing a local attacker to append arbitrary entries to the list of files to process. This can lead to privilege escalation. Affected versions are 1.8.0 through 1.9.12.p1. The problem exists because a user-specified editor may contain a "--" argument that defeats a protection mechanism, e.g., an EDITOR='vim -- /path/to/extra/file' value.

Related Vulnerabilitiesvia CWE-269

CVE-2026-36298.1 HIGH

The Import and export users and customers plugin for WordPress is vulnerable to privilege escalation in all versions up to, and including, 1.

CWE-269
CVE-2026-23756.5 MEDIUM

The App Builder – Create Native Android & iOS Apps On The Flight plugin for WordPress is vulnerable to Privilege Escalation in all versions up to, and including, 5.

CWE-269
CVE-2026-318368.1 HIGH

Checkmate is an open-source, self-hosted tool designed to track and monitor server hardware, uptime, response times, and incidents in real-time with beautiful visualizations.

CWE-269CWE-285
CVE-2026-308882.2 LOW

Discourse is an open-source discussion platform.

CWE-269
CVE-2026-327600 UNKNOWN

File Browser is a file managing interface for uploading, deleting, previewing, renaming, and editing files within a specified directory.

CWE-269CWE-284
CVE-2026-308740 UNKNOWN

OpenWrt Project is a Linux operating system targeting embedded devices.

CWE-74CWE-187CWE-269