0x00 Introduction
The Linux system is anopen-source Unix-like operating system kernel,which, due to its powerful customizability and stability, has been widely used in various fields such as servers, mobile devices, and IoT devices.
Throughout its development, the Linux system has attracted developers from around the world, forming a strong community. It is licensed under the GNU General Public License (GPL), which means it is free and open-source, encouraging users to share and modify the code. This has also led to many different Linux distributions, such as Ubuntu, Fedora, and Debian.
sudo is a very important command tool in Unix, Linux, and Unix-like systems (such as macOS), which stands for “superuser do” (also often understood as “substitute user do”). Its main function is to allow ordinary users to temporarily execute commands as the superuser (root) or another specified user without switching to the target user (such as root).
0x01 Vulnerability Description
The local privilege escalation vulnerability in Linux sudo exists in the chroot functionality of sudo. When loading the nsswitch.conf configuration file from the target location, the corresponding dynamic libraries are also loaded. An attacker can implant a malicious dynamic library to allow non-sudoer group users to gain root privileges.
Source: Internet
0x02 CVE Identifier
CVE-2025-32463
0x03 Affected Versions
sudo versions 1.9.14 to 1.9.17 (inclusive) are affected
0x04 Vulnerability Details
POC:
https://github.com/kh4sh3i/CVE-2025-32463

0x05 Reference Links
https://www.stratascale.com/vulnerability-alert-CVE-2025-32463-sudo-chroot
Recommended Reading:
CVE-2024-26809: Linux Privilege Escalation Vulnerability (PoC)
CVE-2025-8088: WinRAR Path Traversal Vulnerability (POC)
CVE-2025-11001: 7-Zip Remote Code Execution Vulnerability (POC)
Note: Sharing of security hotspots at home and abroad is welcome. Please ensure the integrity of the article when sharing or reprinting. If there is sensitive information or infringement content in the article, please contact the author to delete the information. Information security is a long-term task, thank you for your support.
!!!
The articles and tools provided by this public account are for learning reference only. Any direct or indirect consequences and damages caused by the dissemination or use of the information provided in this document are the responsibility of the user. This public account and the article’s author do not bear any responsibility for this.
