Vulnerability Database

296,137

Total vulnerabilities in the database

CVE-2025-32463

Sudo before 1.9.17p1 allows local users to obtain root access because /etc/nsswitch.conf from a user-controlled directory is used with the --chroot option.

Published: Jun 30, 2025
Updated: Jul 18, 2025
CVE: CVE-2025-32463
Severity: High
Exploit:

CVSS v3:

Severity: High
Score: 7.8
AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CWEs:

CWE-829

Affected Software
References

Software	From	Fixed in
sudo_project / sudo	1.9.17	1.9.17.x
sudo_project / sudo	1.9.14	1.9.17
debian / debian_linux	11.0	11.0.x
debian / debian_linux	12.0	12.0.x
suse / linux_enterprise_real_time	15.0-sp2	15.0-sp2.x
canonical / ubuntu_linux	22.04	22.04.x
debian / debian_linux	13.0	13.0.x
canonical / ubuntu_linux	24.04	24.04.x
redhat / enterprise_linux	10.0	10.0.x
opensuse / leap	15.6	15.6.x
suse / linux_enterprise_desktop	15-sp7	15-sp7.x
suse / linux_enterprise_desktop	15-sp6	15-sp6.x
suse / linux_enterprise_real_time	15.0-sp6	15.0-sp6.x
suse / linux_enterprise_real_time	15.0-sp7	15.0-sp7.x
suse / linux_enterprise_server_for_sap	12-sp6	12-sp6.x
suse / linux_enterprise_server_for_sap	12-sp7	12-sp7.x
canonical / ubuntu_linux	25.04	25.04.x
canonical / ubuntu_linux	24.10	24.10.x