Cybersecurity researchers have identified two critical vulnerabilities in the Sudo command-line utility that could allow local attackers to escalate privileges to root on Linux and Unix-like systems. These flaws, including a remote host rule exploitation and chroot-related bypass, underscore the importance of timely patches and updates. #SudoVulnerabilities #PrivilegeEscalation
Keypoints
- Two vulnerabilities were disclosed in the Sudo utility, affecting Linux and Unix systems.
- The CVE-2025-32462 flaw allows remote machine command execution via host rules.
- The CVE-2025-32463 vulnerability enables local privilege escalation with /etc/nsswitch.conf manipulation.
- The vulnerabilities were discovered by Stratascaleβs Cyber Research Unit.
- Patch updates have been released to address these security issues, emphasizing the need for timely system updates.