Red Hat Security Advisory: sudo security update
The sudo packages contain the sudo utility which allows system administrators to provide certain users with the permission to execute privileged commands, which are used for system management purposes, without having to log in as root. Security Fix(es): * sudo: Sudo: Privilege escalation due to failure in privilege drop calls (CVE-2026-35535) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
AI Analysis
Technical Summary
The sudo utility in Red Hat Enterprise Linux 9 and related versions contains a vulnerability identified as CVE-2026-35535, where a failure in privilege drop calls can lead to privilege escalation. This vulnerability affects the sudo packages that allow delegated privileged command execution without root login. Red Hat has released updated sudo packages to fix this issue, as detailed in advisory RHSA-2026:19220. The vulnerability is categorized under CWE-272 (Improper Privilege Management).
Potential Impact
Successful exploitation of this vulnerability could allow a user with sudo privileges to escalate their privileges beyond intended limits due to improper handling of privilege drop calls. This could lead to unauthorized administrative access or actions on affected systems. However, there are no known exploits in the wild currently.
Mitigation Recommendations
Red Hat has released an official security update for sudo to address CVE-2026-35535. Administrators should apply the updated sudo packages for Red Hat Enterprise Linux 9 and related variants as provided in advisory RHSA-2026:19220. Detailed update instructions are available at https://access.redhat.com/articles/11258. Applying this update mitigates the vulnerability effectively.
Red Hat Security Advisory: sudo security update
Description
The sudo packages contain the sudo utility which allows system administrators to provide certain users with the permission to execute privileged commands, which are used for system management purposes, without having to log in as root. Security Fix(es): * sudo: Sudo: Privilege escalation due to failure in privilege drop calls (CVE-2026-35535) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Weaknesses
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
The sudo utility in Red Hat Enterprise Linux 9 and related versions contains a vulnerability identified as CVE-2026-35535, where a failure in privilege drop calls can lead to privilege escalation. This vulnerability affects the sudo packages that allow delegated privileged command execution without root login. Red Hat has released updated sudo packages to fix this issue, as detailed in advisory RHSA-2026:19220. The vulnerability is categorized under CWE-272 (Improper Privilege Management).
Potential Impact
Successful exploitation of this vulnerability could allow a user with sudo privileges to escalate their privileges beyond intended limits due to improper handling of privilege drop calls. This could lead to unauthorized administrative access or actions on affected systems. However, there are no known exploits in the wild currently.
Mitigation Recommendations
Red Hat has released an official security update for sudo to address CVE-2026-35535. Administrators should apply the updated sudo packages for Red Hat Enterprise Linux 9 and related variants as provided in advisory RHSA-2026:19220. Detailed update instructions are available at https://access.redhat.com/articles/11258. Applying this update mitigates the vulnerability effectively.
Technical Details
- Gcve Source
- db.gcve.eu
- Csaf Category
- csaf_security_advisory
- Csaf Version
- 2.0
- Publisher
- Red Hat Product Security
- Advisory Id
- RHSA-2026:19220
- Cve Count
- 1
- Additional Cves
- []
- Cvss Version
- null
Threat ID: 6a175eeee29bf47b50edcef4
Added to database: 5/27/2026, 9:15:26 PM
Last enriched: 5/27/2026, 9:22:51 PM
Last updated: 5/29/2026, 3:39:27 PM
Views: 5
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.