On October 14th, 2019, a bug has been found regarding the way sudo implemented running commands with arbitrary user ID.
CA API Gateway 9.0+
This bug affects all supported version of Redhat Linux. It appears the fix will be available in sudo version 1.8.28, which is currently not available. We are monitoring the status of this vulnerability for updates.
Follow the NOTICE: RHEL Vulnerability CVE-2019-14287 Communities Post for Updates.