Vulnerabilities > Amazon > Amazon SSM Agent > High

DATE CVE VULNERABILITY TITLE RISK
2022-04-20 CVE-2022-29527 Incorrect Permission Assignment for Critical Resource vulnerability in Amazon SSM Agent
Amazon AWS amazon-ssm-agent before 3.1.1208.0 creates a world-writable sudoers file, which allows local attackers to inject Sudo rules and escalate privileges to root.
local
high complexity
amazon CWE-732
7.0