← Back to CVE List
CVE-2020-27985
Security Onion v2 prior to 2.3.10 has an incorrect sudo configuration, which allows the administrative user to obtain root access without using the sudo password by editing and executing /home/<user>/SecurityOnion/setup/so-setup.
> MITRE Terms of Use apply – see LICENSE‑MITRE.txt