{"id":"UBUNTU-CVE-2024-32019","details":"Netdata is an open source observability tool. In affected versions the `ndsudo` tool shipped with affected versions of the Netdata Agent allows an attacker to run arbitrary programs with root permissions. The `ndsudo` tool is packaged as a `root`-owned executable with the SUID bit set. It only runs a restricted set of external commands, but its search paths are supplied by the `PATH` environment variable. This allows an attacker to control where `ndsudo` looks for these commands, which may be a path the attacker has write access to. This may lead to local privilege escalation. This vulnerability has been addressed in versions 1.45.3 and 1.45.2-169. Users are advised to upgrade. There are no known workarounds for this vulnerability.","modified":"2026-02-04T02:57:17.059292Z","published":"2024-04-12T21:15:00Z","withdrawn":"2025-06-23T15:58:13Z","related":["CVE-2024-32019"],"references":[{"type":"REPORT","url":"https://ubuntu.com/security/CVE-2024-32019"},{"type":"REPORT","url":"https://www.cve.org/CVERecord?id=CVE-2024-32019"},{"type":"REPORT","url":"https://github.com/netdata/netdata/security/advisories/GHSA-pmhq-4cxq-wj93"},{"type":"REPORT","url":"https://github.com/netdata/netdata/pull/17377"}],"affected":[{"package":{"name":"netdata","ecosystem":"Ubuntu:Pro:18.04:LTS","purl":"pkg:deb/ubuntu/netdata@1.9.0+dfsg-1?arch=source&distro=esm-apps/bionic"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"}]}],"versions":["1.7.0+dfsg-1","1.8.0+dfsg-1","1.9.0+dfsg-1"],"ecosystem_specific":{"ubuntu_priority":"medium"},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2024/UBUNTU-CVE-2024-32019.json"}},{"package":{"name":"netdata","ecosystem":"Ubuntu:20.04:LTS","purl":"pkg:deb/ubuntu/netdata@1.19.0-3ubuntu1?arch=source&distro=focal"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"}]}],"versions":["1.16.1-2","1.19.0-3ubuntu1"],"ecosystem_specific":{"ubuntu_priority":"medium"},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2024/UBUNTU-CVE-2024-32019.json"}},{"package":{"name":"netdata","ecosystem":"Ubuntu:22.04:LTS","purl":"pkg:deb/ubuntu/netdata@1.33.1-1ubuntu1?arch=source&distro=jammy"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"}]}],"versions":["1.29.3-4","1.31.0-4","1.33.1-1ubuntu1"],"ecosystem_specific":{"ubuntu_priority":"medium"},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2024/UBUNTU-CVE-2024-32019.json"}},{"package":{"name":"netdata","ecosystem":"Ubuntu:24.10","purl":"pkg:deb/ubuntu/netdata@1.44.3-2?arch=source&distro=oracular"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"}]}],"versions":["1.43.2-1build2","1.44.3-2"],"ecosystem_specific":{"ubuntu_priority":"medium"},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2024/UBUNTU-CVE-2024-32019.json"}},{"package":{"name":"netdata","ecosystem":"Ubuntu:24.04:LTS","purl":"pkg:deb/ubuntu/netdata@1.43.2-1build2?arch=source&distro=noble"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"}]}],"versions":["1.42.1-1","1.43.1-1","1.43.2-1","1.43.2-1build1","1.43.2-1build2"],"ecosystem_specific":{"ubuntu_priority":"medium"},"database_specific":{"source":"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2024/UBUNTU-CVE-2024-32019.json"}}],"schema_version":"1.7.3"}