Detect Baron Samedit Cve-2021-3156

Description

This search detects the heap-based buffer overflow of sudoedit

   Help

Detect Baron Samedit Cve-2021-3156 Help

Splunk Universal Forwarder running on Linux systems, capturing logs from the /var/log directory. The vulnerability is exposed when a non privledged user tries passing in a single \ character at the end of the command while using the shell and edit flags.

   Search

Open in Search