VDB
DEBIAN-CVE-2025-32463
DEBIAN-CVE-2025-32463
PUBLISHED
CVSS 7.800000190734863 HIGH
Sudo before 1.9.17p1 allows local users to obtain root access because /etc/nsswitch.conf from a user-controlled directory is used with the --chroot option.
Risk Scores
CVSS 3.1
7.800000190734863
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Debian:13 | sudo | 0, 0 |
| Debian:14 | sudo | 0, 0 |
Exploit Intelligence
- POC for CVE-2025-32463 (github-poc-repo)
- POC for CVE-2025-32463 (github-poc)
- Exploit para explotar la vulnerabilidad CVE-2025-32463 (github-poc-repo)
- POC for the CVE-2025-32462 and CVE-2025-32463 vulnerabilities (github-poc-repo)
- CVE-2025-32463 (github-poc-repo)
- 0xb0rn3/CVE-2025-32463-EXPLOIT (github-poc-repo)
- 🛡️ Proof of Concept (PoC) for CVE-2025-32463 — Local privilege escalation in sudo (versions 1.9.14 to 1.9.17). This exploit abuses the --chroot option and a malicious nsswitch.conf to execute arbitrary code as root. ⚠️ For educational and authorized testing only. (github-poc-repo)
- C reimplementation of chwoot PoC (github-poc-repo)
- danilo1992-sys/CVE-2025-32463 (github-poc-repo)
- yonathanpy/CVE-2025-32462-CVE-2025-32463-PoC-Lab (github-poc-repo)
…and 77 more exploits
Timeline
- Jun 30, 2025 CVE Published
- Apr 28, 2026 CVE Updated