CVE-2025-32463 | THREATINT

Description

Sudo before 1.9.17p1 allows local users to obtain root access because /etc/nsswitch.conf from a user-controlled directory is used with the --chroot option.

Reserved 2025-04-09 | Published 2025-06-30 | Updated 2025-06-30 | Assigner mitre

CRITICAL: 9.3CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

Problem types

CWE-829 Inclusion of Functionality from Untrusted Control Sphere

Product status

Default status

unaffected

1.9.14 before 1.9.17p1

affected

References

www.sudo.ws/security/advisories/

www.sudo.ws/releases/changelog/

www.stratascale.com/...lity-alert-CVE-2025-32463-sudo-chroot

www.openwall.com/lists/oss-security/2025/06/30/3

cve.org (CVE-2025-32463)

nvd.nist.gov (CVE-2025-32463)

Download JSON