CVE-2013-1775 [Medium] | Security Bypass in Sudo

CVE-2013-1775 is rated High Exploit Risk (79.7/100): CVSS Medium severity, with high exploitation likelihood (EPSS 8.13%, 92th percentile). 4 public exploit reference(s) are indexed (Exploit-DB). EPSS rose +6.08% over the last day, indicating growing attacker interest. Public exploits are available—assess exposure, apply mitigations, and prioritize patching.

EDB-ID	Source	Kind	Published	Link
27965	exploit_db	edb	2013-08-30	Exploit-DB ↗
27944	exploit_db	edb	2013-08-29	Exploit-DB ↗
—	nvd_ref	exploit_tag		Exploit-DB ↗
—	nvd_ref	exploit_tag		Exploit-DB ↗

EDB-ID

Source

Kind

Published

Link

27965

exploit_db

edb

2013-08-30

Exploit-DB ↗

27944

exploit_db

edb

2013-08-29

Exploit-DB ↗

—

nvd_ref

exploit_tag

Exploit-DB ↗

—

nvd_ref

exploit_tag

Exploit-DB ↗

#	Date	Old EPSS score	New EPSS score	Delta (New - Old)
1	2025-12-07	2.05%	8.13%	+6.08%
2	2025-09-26	2.23%	2.05%	-0.18%
3	2025-03-30	—	2.23%	—

Date

Old EPSS score

New EPSS score

Delta (New - Old)

2025-12-07

2.05%

8.13%

+6.08%

2025-09-26

2.23%

2.05%

-0.18%

2025-03-30

—

2.23%

—

Base score	Version	Severity	Vector	Exploitability	Impact	Score source
6.9	2.0	MEDIUM	`AV:L/AC:M/Au:N/C:C/I:C/A:C` Click to expand Access vector (AV:L) Requires local access to the target system. Access complexity (AC:M) Exploitation needs some favorable conditions, but not exceptional ones. Authentication (AU:N) No authentication is required. Confidentiality impact (C:C) Complete confidentiality impact. Integrity impact (I:C) Complete integrity impact. Availability impact (A:C) Complete availability impact.	3.4	10.0	[email protected]

Base score

Version

Severity

Vector

Exploitability

Impact

Score source

6.9

2.0

MEDIUM

AV:L/AC:M/Au:N/C:C/I:C/A:C Click to expand

Access vector (AV:L): Requires local access to the target system.
Access complexity (AC:M): Exploitation needs some favorable conditions, but not exceptional ones.
Authentication (AU:N): No authentication is required.
Confidentiality impact (C:C): Complete confidentiality impact.
Integrity impact (I:C): Complete integrity impact.
Availability impact (A:C): Complete availability impact.

3.4

10.0

[email protected]

OS Trackers for CVE-2013-1775

vendor	priority	summary	link
`debian`	not yet assigned	CVE-2013-1775 not yet assigned priority: Debian including 1 source packages (sudo), 5 status rows across 5 suites (bookworm, bullseye, forky, sid, trixie): resolved 5.	https://security-tracker.debian.org/tracker/CVE-2013-1775
`gentoo`	high	CVE-2013-1775: 1 GLSA(s) (201401-23), 1 atom(s) (app-admin/sudo); latest impact high.	https://bugs.gentoo.org/buglist.cgi?quicksearch=CVE-2013-1775
`redhat`	low	—	https://access.redhat.com/security/cve/CVE-2013-1775
`suse`	medium	CVE-2013-1775 severity moderate: SUSE including 33 source package names (sudo, sudo-1.7.6p2-0.17.5, …), 104 product×package rows across 66 product lines (SUSE CaaS Platform 4.0, SUSE Enterprise Storage 7, … (66 product lines)): Known Not Affected 61, Fixed 43.	https://www.suse.com/security/cve/CVE-2013-1775/
`ubuntu`	high	CVE-2013-1775 high priority: Ubuntu including 1 source packages (sudo), 6 status rows across 6 suites (hardy, lucid, oneiric, precise, quantal, upstream): released 6.	https://ubuntu.com/security/CVE-2013-1775

Affected software / configurations for CVE-2013-1775

Vendor	Product	Version	Raw CPE
todd_miller	sudo	1.6	cpe:2.3:a:todd_miller:sudo:1.6:::::::*
todd_miller	sudo	1.6.1	cpe:2.3:a:todd_miller:sudo:1.6.1:::::::*
todd_miller	sudo	1.6.2	cpe:2.3:a:todd_miller:sudo:1.6.2:::::::*
todd_miller	sudo	1.6.2p3	cpe:2.3:a:todd_miller:sudo:1.6.2p3:::::::*
todd_miller	sudo	1.6.3	cpe:2.3:a:todd_miller:sudo:1.6.3:::::::*
todd_miller	sudo	1.6.3_p7	cpe:2.3:a:todd_miller:sudo:1.6.3_p7:::::::*
todd_miller	sudo	1.6.4	cpe:2.3:a:todd_miller:sudo:1.6.4:::::::*
todd_miller	sudo	1.6.4p2	cpe:2.3:a:todd_miller:sudo:1.6.4p2:::::::*
todd_miller	sudo	1.6.5	cpe:2.3:a:todd_miller:sudo:1.6.5:::::::*
todd_miller	sudo	1.6.6	cpe:2.3:a:todd_miller:sudo:1.6.6:::::::*
todd_miller	sudo	1.6.7	cpe:2.3:a:todd_miller:sudo:1.6.7:::::::*
todd_miller	sudo	1.6.7p5	cpe:2.3:a:todd_miller:sudo:1.6.7p5:::::::*
todd_miller	sudo	1.6.8	cpe:2.3:a:todd_miller:sudo:1.6.8:::::::*
todd_miller	sudo	1.6.8p12	cpe:2.3:a:todd_miller:sudo:1.6.8p12:::::::*
todd_miller	sudo	1.6.9	cpe:2.3:a:todd_miller:sudo:1.6.9:::::::*
todd_miller	sudo	1.6.9p20	cpe:2.3:a:todd_miller:sudo:1.6.9p20:::::::*
todd_miller	sudo	1.6.9p21	cpe:2.3:a:todd_miller:sudo:1.6.9p21:::::::*
todd_miller	sudo	1.6.9p22	cpe:2.3:a:todd_miller:sudo:1.6.9p22:::::::*
todd_miller	sudo	1.6.9p23	cpe:2.3:a:todd_miller:sudo:1.6.9p23:::::::*
todd_miller	sudo	1.8.0	cpe:2.3:a:todd_miller:sudo:1.8.0:::::::*
todd_miller	sudo	1.8.1	cpe:2.3:a:todd_miller:sudo:1.8.1:::::::*
todd_miller	sudo	1.8.1p1	cpe:2.3:a:todd_miller:sudo:1.8.1p1:::::::*
todd_miller	sudo	1.8.1p2	cpe:2.3:a:todd_miller:sudo:1.8.1p2:::::::*
todd_miller	sudo	1.8.2	cpe:2.3:a:todd_miller:sudo:1.8.2:::::::*
todd_miller	sudo	1.8.3	cpe:2.3:a:todd_miller:sudo:1.8.3:::::::*
todd_miller	sudo	1.8.3p1	cpe:2.3:a:todd_miller:sudo:1.8.3p1:::::::*
todd_miller	sudo	1.8.3p2	cpe:2.3:a:todd_miller:sudo:1.8.3p2:::::::*
todd_miller	sudo	1.8.4	cpe:2.3:a:todd_miller:sudo:1.8.4:::::::*
todd_miller	sudo	1.8.4p1	cpe:2.3:a:todd_miller:sudo:1.8.4p1:::::::*
todd_miller	sudo	1.8.4p2	cpe:2.3:a:todd_miller:sudo:1.8.4p2:::::::*
todd_miller	sudo	1.8.4p3	cpe:2.3:a:todd_miller:sudo:1.8.4p3:::::::*
todd_miller	sudo	1.8.4p4	cpe:2.3:a:todd_miller:sudo:1.8.4p4:::::::*
todd_miller	sudo	1.8.4p5	cpe:2.3:a:todd_miller:sudo:1.8.4p5:::::::*
todd_miller	sudo	1.8.5	cpe:2.3:a:todd_miller:sudo:1.8.5:::::::*
todd_miller	sudo	1.8.5p1	cpe:2.3:a:todd_miller:sudo:1.8.5p1:::::::*
todd_miller	sudo	1.8.5p2	cpe:2.3:a:todd_miller:sudo:1.8.5p2:::::::*
todd_miller	sudo	1.8.5p3	cpe:2.3:a:todd_miller:sudo:1.8.5p3:::::::*
todd_miller	sudo	1.8.6	cpe:2.3:a:todd_miller:sudo:1.8.6:::::::*
todd_miller	sudo	1.8.6p1	cpe:2.3:a:todd_miller:sudo:1.8.6p1:::::::*
todd_miller	sudo	1.8.6p2	cpe:2.3:a:todd_miller:sudo:1.8.6p2:::::::*
todd_miller	sudo	1.8.6p3	cpe:2.3:a:todd_miller:sudo:1.8.6p3:::::::*
todd_miller	sudo	1.8.6p4	cpe:2.3:a:todd_miller:sudo:1.8.6p4:::::::*
todd_miller	sudo	1.8.6p5	cpe:2.3:a:todd_miller:sudo:1.8.6p5:::::::*
todd_miller	sudo	1.8.6p6	cpe:2.3:a:todd_miller:sudo:1.8.6p6:::::::*
apple	mac_os_x	<= 10.10.4	cpe:2.3:o:apple:mac_os_x::::::::
todd_miller	sudo	1.7.0	cpe:2.3:a:todd_miller:sudo:1.7.0:::::::*
todd_miller	sudo	1.7.1	cpe:2.3:a:todd_miller:sudo:1.7.1:::::::*
todd_miller	sudo	1.7.2	cpe:2.3:a:todd_miller:sudo:1.7.2:::::::*
todd_miller	sudo	1.7.2p1	cpe:2.3:a:todd_miller:sudo:1.7.2p1:::::::*
todd_miller	sudo	1.7.2p2	cpe:2.3:a:todd_miller:sudo:1.7.2p2:::::::*
todd_miller	sudo	1.7.2p3	cpe:2.3:a:todd_miller:sudo:1.7.2p3:::::::*
todd_miller	sudo	1.7.2p4	cpe:2.3:a:todd_miller:sudo:1.7.2p4:::::::*
todd_miller	sudo	1.7.2p5	cpe:2.3:a:todd_miller:sudo:1.7.2p5:::::::*
todd_miller	sudo	1.7.2p6	cpe:2.3:a:todd_miller:sudo:1.7.2p6:::::::*
todd_miller	sudo	1.7.2p7	cpe:2.3:a:todd_miller:sudo:1.7.2p7:::::::*
todd_miller	sudo	1.7.3b1	cpe:2.3:a:todd_miller:sudo:1.7.3b1:::::::*
todd_miller	sudo	1.7.4	cpe:2.3:a:todd_miller:sudo:1.7.4:::::::*
todd_miller	sudo	1.7.4p1	cpe:2.3:a:todd_miller:sudo:1.7.4p1:::::::*
todd_miller	sudo	1.7.4p2	cpe:2.3:a:todd_miller:sudo:1.7.4p2:::::::*
todd_miller	sudo	1.7.4p3	cpe:2.3:a:todd_miller:sudo:1.7.4p3:::::::*
todd_miller	sudo	1.7.4p4	cpe:2.3:a:todd_miller:sudo:1.7.4p4:::::::*
todd_miller	sudo	1.7.4p5	cpe:2.3:a:todd_miller:sudo:1.7.4p5:::::::*
todd_miller	sudo	1.7.4p6	cpe:2.3:a:todd_miller:sudo:1.7.4p6:::::::*
todd_miller	sudo	1.7.5	cpe:2.3:a:todd_miller:sudo:1.7.5:::::::*
todd_miller	sudo	1.7.6	cpe:2.3:a:todd_miller:sudo:1.7.6:::::::*
todd_miller	sudo	1.7.6p1	cpe:2.3:a:todd_miller:sudo:1.7.6p1:::::::*
todd_miller	sudo	1.7.6p2	cpe:2.3:a:todd_miller:sudo:1.7.6p2:::::::*
todd_miller	sudo	1.7.7	cpe:2.3:a:todd_miller:sudo:1.7.7:::::::*
todd_miller	sudo	1.7.8	cpe:2.3:a:todd_miller:sudo:1.7.8:::::::*
todd_miller	sudo	1.7.8p1	cpe:2.3:a:todd_miller:sudo:1.7.8p1:::::::*
todd_miller	sudo	1.7.8p2	cpe:2.3:a:todd_miller:sudo:1.7.8p2:::::::*
todd_miller	sudo	1.7.9	cpe:2.3:a:todd_miller:sudo:1.7.9:::::::*
todd_miller	sudo	1.7.9p1	cpe:2.3:a:todd_miller:sudo:1.7.9p1:::::::*
todd_miller	sudo	1.7.10	cpe:2.3:a:todd_miller:sudo:1.7.10:::::::*
todd_miller	sudo	1.7.10p1	cpe:2.3:a:todd_miller:sudo:1.7.10p1:::::::*
todd_miller	sudo	1.7.10p2	cpe:2.3:a:todd_miller:sudo:1.7.10p2:::::::*
todd_miller	sudo	1.7.10p3	cpe:2.3:a:todd_miller:sudo:1.7.10p3:::::::*
todd_miller	sudo	1.7.10p4	cpe:2.3:a:todd_miller:sudo:1.7.10p4:::::::*
todd_miller	sudo	1.7.10p5	cpe:2.3:a:todd_miller:sudo:1.7.10p5:::::::*
todd_miller	sudo	1.7.10p6	cpe:2.3:a:todd_miller:sudo:1.7.10p6:::::::*

References for CVE-2013-1775

URL	Tags
http://lists.apple.com/archives/security-announce/2013/Sep/msg00002.html
http://lists.apple.com/archives/security-announce/2015/Aug/msg00001.html
http://lists.opensuse.org/opensuse-updates/2013-03/msg00066.html
http://osvdb.org/90677
http://rhn.redhat.com/errata/RHSA-2013-1353.html
http://rhn.redhat.com/errata/RHSA-2013-1701.html
http://support.apple.com/kb/HT5880
http://www.debian.org/security/2013/dsa-2642
http://www.openwall.com/lists/oss-security/2013/02/27/22
http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html
http://www.securityfocus.com/bid/58203
http://www.slackware.com/security/viewer.php?l=slackware-security&y=2013&m=slackware-security.517440
http://www.sudo.ws/repos/sudo/rev/ddf399e3e306	Exploit Patch
http://www.sudo.ws/repos/sudo/rev/ebd6cc75020f	Exploit Patch
http://www.sudo.ws/sudo/alerts/epoch_ticket.html	Vendor Advisory
http://www.ubuntu.com/usn/USN-1754-1
https://support.apple.com/kb/HT205031	Vendor Advisory

URL

CVE-2013-1775

Public exploit references (Exploit-DB) for CVE-2013-1775

Exploit prediction scoring system (EPSS) score for CVE-2013-1775

Common vulnerability scoring system (CVSS) metrics for CVE-2013-1775

Weakness enumeration for CVE-2013-1775

OS Trackers for CVE-2013-1775

Affected software / configurations for CVE-2013-1775

References for CVE-2013-1775