CVE-2025-32463

CVSS v3.1

9.3

Critical

AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions:

Sudo versions 1.9.14 through 1.9.17

Description:

Sudo versions 1.9.14 through 1.9.17 are vulnerable to a local privilege escalation. An attacker can leverage the --chroot option to gain root access by manipulating the /etc/nsswitch.conf file within a user-controlled directory. This allows the attacker to execute arbitrary commands with root privileges. A proof-of-concept (PoC) exploit is publicly available. This vulnerability affects various Linux distributions, including Ubuntu and Fedora. The vulnerability stems from improper handling of the /etc/nsswitch.conf file when using the --chroot option.

Recommendations:

Update Sudo to version 1.9.17p1 or later. Rebuild affected base images. Audit for unusual sudoedit usage. Harden privilege boundaries with AppArmor or SELinux.

Exploit

Fix

LPE

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-829

Related Identifiers

ALSA-2025:11537

ALSA-2025_10110

ALSA-2025_9978

ALT-PU-2025-8812

ALT-PU-2025-8851

ALT-PU-2025-8863

BDU:2025-07765

CVE-2025-32463

MGASA-2025-0213

OESA-2025-1735

OESA-2025-1736

OESA-2025-1759

OPENSUSE-SU-2025:15298-1

RHSA-2025:11537

ROSA-SA-2025-2905

SUSE-SU-2025:02177-1

SUSE-SU-2025:20478-1

SUSE-SU-2025:20489-1

SUSE-SU-2025_02177-1

USN-7604-1

Affected Products

Alt Linux

Linuxmint

Red Os

Sudo

Suse

Ubuntu

CVE-2025-32463

Weakness Enumeration

Related Identifiers

Affected Products

References · 331