Cybersecurity researchers have uncovered two critical vulnerabilities in the Sudo utility that can allow local users to escalate privileges to root on Linux and Unix-like systems. These flaws, CVE-2025-32462 and CVE-2025-32463, have been patched in Sudo version 1.9.17p1, and users are urged to update their systems to mitigate risks. #SudoVulnerabilities #PrivilegeEscalation
Keypoints
- Two security flaws in Sudo could let attackers escalate privileges to root on affected systems.
- CVE-2025-32462 exploits the host option, enabling command execution on unintended machines.
- CVE-2025-32463 leverages the chroot option to run arbitrary commands as root without proper permissions.
- The vulnerabilities primarily impact systems with shared sudoers files or LDAP-based configurations.
- Applying the latest updates (version 1.9.17p1) is essential to patch these security flaws and prevent exploitation.
Read More: https://thehackernews.com/2025/07/critical-sudo-vulnerabilities-let-local.html