CVE-2026-35535
Modified
Modified - Updated After Analysis
Privilege Escalation in Sudo via Non-Fatal Privilege Drop Failure
Vulnerability report for CVE-2026-35535, including description, CVSS score, EPSS score, affected products, exploitability, helpful resources, and attack-flow context.
Publication date: 2026-04-03
Last updated on: 2026-07-02
Assigner: MITRE
Description
Description
In Sudo through 1.9.17p2 before 3e474c2, a failure of a setuid, setgid, or setgroups call, during a privilege drop before running the mailer, is not a fatal error and can lead to privilege escalation.
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| siemens | sinec_os | to 4.0 (exc) |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-272 | The elevated privilege level required to perform operations such as chroot() should be dropped immediately after the operation is performed. |
| CWE-271 | The product does not drop privileges before passing control of a resource to an actor that does not have those privileges. |