vulnerability

Huawei EulerOS: CVE-2016-7032: sudo security update

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
7	(AV:L/AC:M/Au:N/C:C/I:C/A:C)	Apr 14, 2017	Nov 30, 2017	Aug 13, 2025

Severity

CVSS

(AV:L/AC:M/Au:N/C:C/I:C/A:C)

Published

Apr 14, 2017

Added

Nov 30, 2017

Modified

Aug 13, 2025

Description

It was discovered that the sudo noexec restriction could have been bypassed if application run via sudo executed system(), popen(), or wordexp() C library functions with a user-supplied argument. A local user permitted to run such application via sudo with noexec restriction could use these flaws to execute arbitrary commands with elevated privileges.

Solution

huawei-euleros-2_0_sp1-upgrade-sudo

References

CVE-2016-7032
https://attackerkb.com/topics/CVE-2016-7032
CWE-284
EULEROS-EulerOS-SA-2017-1004

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today