Exploit for Inclusion of Functionality from Untrusted Control Sphere in Sudo_Project Sudo

📌 CVE-2025-32463 — Sudo --chroot Local Privilege Escalation...

Exploit for Inclusion of Functionality from Untrusted Control Sphere in Sudo_Project Sudo

CVE-2025-32463: Sudo Local Privilege Escalation Vulnerability...

Exploit for Inclusion of Functionality from Untrusted Control Sphere in Sudo_Project Sudo

CVE-2025-32463 POC Proof-of-concept exploit CVE-2025-32463...

Exploit for Inclusion of Functionality from Untrusted Control Sphere in Sudo_Project Sudo

CVE-2025-32463 - Vulnerable: sudo 1.9.14, 1.9.15, 1.9.16, 1.9...

AlmaLinux 10 : sudo (ALSA-2025:11537)

The remote AlmaLinux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2025:11537 advisory. sudo: LPE via host option CVE-2025-32462 sudo: LPE via chroot option CVE-2025-32463 Tenable has extracted the preceding description block directly from...

RLSA-2025:11537 Important: sudo security update

The sudo packages contain the sudo utility which allows system administrators to provide certain users with the permission to execute privileged commands, which are used for system management purposes, without having to log in as root. Security Fixes: sudo: LPE via host option CVE-2025-32462 sudo...

sudo security update

An update is available for sudo. This update affects Rocky Linux 10. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The sudo packages contain the sudo utility which allows system administrators t...

VulnCheck KEV: CVE-2025-32463

Sudo before 1.9.17p1 allows local users to obtain root access because /etc/nsswitch.conf from a user-controlled directory is used with the --chroot option...

Sudo Inclusion of Functionality from Untrusted Control Sphere Vulnerability

Sudo contains an inclusion of functionality from untrusted control sphere vulnerability. This vulnerability could allow local attacker to leverage sudo’s -R --chroot option to run arbitrary commands as root, even if they are not listed in the sudoers file...

📄 Sudo Chroot 1.9.17 Privilege Escalation

This Metasploit module exploits the chroot vulnerability in Sudo versions prior to 1.9.17p1. It allows the attacker to trick Sudo into loading an arbitrary shared object, thus resulting in a privilege escalation. This module requires Metasploit: https://metasploit.com/download Current source:...

K000152954: Sudo vulnerability CVE-2025-32463

Security Advisory Description Sudo before 1.9.17p1 allows local users to obtain root access because /etc/nsswitch.conf from a user-controlled directory is used with the --chroot option. CVE-2025-32463 Impact There is no impact; F5 products are not affected by this vulnerability. Security Advisory...

sudo: LPE via chroot option

A flaw was found in Sudo. This flaw allows a local attacker to escalate their privileges by tricking Sudo into loading an arbitrary shared library using the user-specified root directory via the -R --chroot option. An attacker can run arbitrary commands as root on systems that support...

Local Privilege Escalation

Sudo is vulnerable to local privilege escalation. The vulnerability is due to the use of a user-controlled /etc/nsswitch.conf file when running with the --chroot option, which allows an attacker to obtain root access on the system...

Security update for sudo

This update for sudo fixes the following issues: CVE-2025-32462: Fix a possible local privilege escalation via the --host option bsc1245274 CVE-2025-32463: Fix a possible local privilege Escalation via chroot option bsc1245275 Patch Instructions: To install this SUSE update use the SUSE recommend...

SUSE-SU-2025:20478-1 Security update for sudo

This update for sudo fixes the following issues: - CVE-2025-32462: Fix a possible local privilege escalation via the --host option bsc1245274 - CVE-2025-32463: Fix a possible local privilege Escalation via chroot option bsc1245275...

Security update for sudo

This update for sudo fixes the following issues: CVE-2025-32462: Fix a possible local privilege escalation via the --host option bsc1245274 CVE-2025-32463: Fix a possible local privilege Escalation via chroot option bsc1245275 Patch Instructions: To install this SUSE update use the SUSE recommend...

SUSE-SU-2025:20489-1 Security update for sudo

This update for sudo fixes the following issues: - CVE-2025-32462: Fix a possible local privilege escalation via the --host option bsc1245274 - CVE-2025-32463: Fix a possible local privilege Escalation via chroot option bsc1245275...

Sudo chroot 1.9.17 - Local Privilege Escalation

Exploit Title: Sudo chroot 1.9.17 - Local Privilege Escalation Google Dork: not aplicable Date: Mon, 30 Jun 2025 Exploit Author: Stratascale Vendor Homepage:https://salsa.debian.org/sudo-team/sudo Software Link: Version: Sudo versions 1.9.14 to 1.9.17 inclusive Tested on: Kali Rolling 2025-7-3 CV...

CVE-2025-32463

Sudo before 1.9.17p1 allows local users to obtain root access because /etc/nsswitch.conf from a user-controlled directory is used with the --chroot option...

AZL-64458 CVE-2025-32463 affecting package sudo for versions less than 1.9.17-1

Sudo before 1.9.17p1 allows local users to obtain root access because /etc/nsswitch.conf from a user-controlled directory is used with the --chroot option...