Loading HuntDB...
Hunt
Vulnerability Intelligence by wss.sh
Home Daily Briefings High Impact CVEs Recent Exploits KEV Catalog GitHub Advisories Latest Updates Security News
Sign In Sign Up

CVE-2025-32462

LOW
Published 2025-06-30T00:00:00.000Z
Actions:

Expert Analysis

Professional remediation guidance

Get tailored security recommendations from our analyst team for CVE-2025-32462. We'll provide specific mitigation strategies based on your environment and risk profile.

CVSS Score

V3.1
2.8
/10
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:L/A:N
Base Score Metrics
Exploitability: N/A Impact: N/A

Attack Vector Metrics

Attack Vector
Not Available
Attack Complexity
Not Available
Privileges Required
Not Available
User Interaction
Not Available
Scope
Not Available

Impact Metrics

Confidentiality
Not Available
Integrity
Not Available
Availability
Not Available

Description

Sudo before 1.9.17p1, when used with a sudoers file that specifies a host that is neither the current host nor ALL, allows listed users to execute commands on unintended machines.

Available Exploits

No exploits available for this CVE.

Related News

Week in review: Sudo local privilege escalation flaws fixed, Google patches actively exploited Chrome

Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: Sudo local privilege escalation vulnerabilities fixed (CVE-2025-32462, CVE-2025-32463) If you haven’t recently updated the Sudo utility on your Linux box(es), yo…

Help Net Security 2025-07-06 08:00
Read More
Sudo local privilege escalation vulnerabilities fixed (CVE-2025-32462, CVE-2025-32463)

If you haven’t recently updated the Sudo utility on your Linux box(es), you should do so now, to patch two local privilege escalation vulnerabilities (CVE-2025-32462, CVE-2025-32463) that have been disclosed on Monday. What is Sudo? Sudo is command-line utili…

Help Net Security 2025-07-01 12:58
Read More

Affected Products

Sudo project

Sudo

Affected Versions:

1.8.8

EU Vulnerability Database

Monitored by ENISA for EU cybersecurity

EU Coordination

Not EU Coordinated

Exploitation Status

No Known Exploitation

EUVD ID

View on ENISA

ENISA Analysis

Sudo before 1.9.17p1, when used with a sudoers file that specifies a host that is neither the current host nor ALL, allows listed users to execute commands on unintended machines.

Affected Products (ENISA)

sudo project
sudo

ENISA Scoring

CVSS Score (3.1)

2.8
/10
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:L/A:N

EPSS Score

0.380
probability

ENISA References

https://www.sudo.ws/security/advisories/
https://www.sudo.ws/releases/changelog/
https://www.stratascale.com/vulnerability-alert-CVE-2025-32462-sudo-host
https://www.openwall.com/lists/oss-security/2025/06/30/2
https://www.secpod.com/blog/sudo-lpe-vulnerabilities-resolved-what-you-need-to-know-about-cve-2025-32462-and-cve-2025-32463/
https://www.sudo.ws/security/advisories/host_any/
https://ubuntu.com/security/notices/USN-7604-1
https://lists.debian.org/debian-security-announce/2025/msg00118.html
https://explore.alas.aws.amazon.com/CVE-2025-32462.html
https://bugs.gentoo.org/show_bug.cgi?id=CVE-2025-32462
https://security-tracker.debian.org/tracker/CVE-2025-32462
https://www.suse.com/security/cve/CVE-2025-32462.html
https://access.redhat.com/security/cve/cve-2025-32462

Data provided by ENISA EU Vulnerability Database. Last updated: July 25, 2025

GitHub Security Advisories

Community-driven vulnerability intelligence from GitHub

⚠ Unreviewed LOW

GHSA-c5x2-97hm-x895

Advisory Details

Sudo before 1.9.17p1, when used with a sudoers file that specifies a host that is neither the current host nor ALL, allows listed users to execute commands on unintended machines.

CVSS Scoring

CVSS Score

2.5

CVSS Vector

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:L/A:N

References

ADVISORY https://nvd.nist.gov/vuln/detail/CVE-2025-32462
WEB https://access.redhat.com/security/cve/cve-2025-32462
WEB https://bugs.gentoo.org/show_bug.cgi?id=CVE-2025-32462
WEB https://explore.alas.aws.amazon.com/CVE-2025-32462.html
WEB https://lists.debian.org/debian-security-announce/2025/msg00118.html
WEB https://security-tracker.debian.org/tracker/CVE-2025-32462
WEB https://ubuntu.com/security/notices/USN-7604-1
WEB https://www.openwall.com/lists/oss-security/2025/06/30/2
WEB https://www.secpod.com/blog/sudo-lpe-vulnerabilities-resolved-what-you-need-to-know-about-cve-2025-32462-and-cve-2025-32463
WEB https://www.stratascale.com/vulnerability-alert-CVE-2025-32462-sudo-host
WEB https://www.sudo.ws/releases/changelog
WEB https://www.sudo.ws/security/advisories
WEB https://www.sudo.ws/security/advisories/host_any
WEB https://www.suse.com/security/cve/CVE-2025-32462.html

Advisory provided by GitHub Security Advisory Database. Published: June 30, 2025, Modified: July 25, 2025

Social Media Intelligence

Real-time discussions and threat intelligence from social platforms

9 posts
Reddit 1 week, 1 day ago
mariusradulescu1990

ASUSTOR NEW FIRMWARE RELEASE 5.0.0.RJG2 16.07.2025 Hello guys, i had issues with 5.0 in the past with Fan control not working and system randomly shuting down between 03:00-04:00. did someone update to the new version? Any issues so far? # Change log: * Sudo package updated to version 1.9.17p1 to …

Also mentions: CVE-2025-7699 CVE-2025-7380 CVE-2025-32463
7
8
23.0
View Original
Reddit 2 weeks, 1 day ago
ngeorger

sudo's latest "trick": when chroot and nsswitch conspire against you (cve-2025-32462) Ah, `sudo`. The trusty command that grants mere mortals the power of a deity (root, that is) on a Linux system. It's the gatekeeper, the bouncer, the one program we all implicitly trust to elevate our privileges without turning …

1
1.0
View Original
Reddit 2 weeks, 3 days ago
MauriceTorres
Exploit PoC

𝐓𝐨𝐝𝐚𝐲'𝐬 𝐏𝐚𝐭𝐜𝐡 𝐓𝐮𝐞𝐬𝐝𝐚𝐲 𝐨𝐯𝐞𝐫𝐯𝐢𝐞𝐰 • Microsoft has addressed 𝟏𝟑𝟕 𝐯𝐮𝐥𝐧𝐞𝐫𝐚𝐛𝐢𝐥𝐢𝐭𝐢𝐞𝐬, 𝐧𝐨 𝐳𝐞𝐫𝐨-𝐝𝐚𝐲𝐬, 𝟏𝟒 𝐜𝐫𝐢𝐭𝐢𝐜𝐚𝐥 and 𝐨𝐧𝐞 𝐰𝐢𝐭𝐡 𝐏𝐨𝐂 • Third-party: web browsers, Linux Sudo, Citrix NetScaler, Cisco, WordPress, WinRAR, Brother printers, GitHub, Teleport, Veeam, Grafana, Palo Alto Networks, and Trend Micro. Navigate to 𝐕𝐮𝐥𝐧𝐞𝐫𝐚𝐛𝐢𝐥𝐢𝐭𝐲 𝐃𝐢𝐠𝐞𝐬𝐭 𝐟𝐫𝐨𝐦 𝐀𝐜𝐭𝐢𝐨𝐧𝟏 for comprehensive summary …

Also mentions: CVE-2025-20309 CVE-2025-6554 CVE-2025-6463 CVE-2024-51978 CVE-2025-32463 CVE-2024-51977 CVE-2025-20282 CVE-2025-20281 CVE-2025-49212 CVE-2025-23121 CVE-2025-49825 CVE-2025-49220 CVE-2025-5777 CVE-2025-4232 CVE-2025-4231 CVE-2025-4230 CVE-2025-33053 CVE-2025-4123 CVE-2025-3509
11
11.0
View Original High Risk
Reddit 2 weeks, 5 days ago
MaterialDazzling7011
Exploit

How to Use Sudo 1.9.13 Exploit? I saw that there was a new CVE(CVE-2025-32462) for sudo that allowed privesc using the --host flag, but no website explains how to use it(obviously). Is it really complicated in that it's tailored per computer, or is there a relatively simple command or set …

6
12.0
View Original High Risk
Reddit 3 weeks, 1 day ago
ljulolsen

CVE-2025-32462: sudo: LPE via host option

6
1
8.0
View Original
Reddit 3 weeks, 2 days ago
crstux
Exploit

🔥 Top 10 Trending CVEs (03/07/2025) Here’s a quick breakdown of the 10 most interesting vulnerabilities trending today: **1. [CVE-2025-20309](https://nvd.nist.gov/vuln/detail/CVE-2025-20309)** - 📝 A vulnerability in Cisco Unified Communications Manager (Unified CM) and Cisco Unified Communications Manager Session Management Edition (Unified CM SME) could allow an unauthenticated, remote attacker to log …

Also mentions: CVE-2025-20309 CVE-2025-6554 CVE-2025-32463 CVE-2025-49493 CVE-2025-6543 CVE-2025-20282 CVE-2025-20281 CVE-2024-6387 CVE-2006-5051
2
2.0
View Original High Risk
Reddit 3 weeks, 3 days ago
crstux
Exploit

🔥 Top 10 Trending CVEs (02/07/2025) Here’s a quick breakdown of the 10 most interesting vulnerabilities trending today: **1. [CVE-2025-6554](https://nvd.nist.gov/vuln/detail/CVE-2025-6554)** - 📝 Type confusion in V8 in Google Chrome prior to 138.0.7204.96 allowed a remote attacker to perform arbitrary read/write via a crafted HTML page. (Chromium security severity: High) - …

Also mentions: CVE-2025-32463 CVE-2025-49493 CVE-2025-6543 CVE-2025-20282 CVE-2025-20281 CVE-2025-5263 CVE-2025-3248
2
2.0
View Original High Risk
Reddit 3 weeks, 3 days ago
doolittledoolate

Sudo has multiple serious CVEs. If anyone else logs into your servers you need to update immediately. https://www.stratascale.com/vulnerability-alert-CVE-2025-32463-sudo-chroot https://www.stratascale.com/vulnerability-alert-CVE-2025-32462-sudo-host Also once again, [Installing packages you don't need increases your attack surface, sudo is not automatically more secure than root](https://old.reddit.com/r/selfhosted/comments/1hwko2i/rant_please_stop_including_sudo_in_instructions/). Maybe I'm an old curmudgeon, but anyone single-sudo-users who got burned …

Also mentions: CVE-2025-32463
117
205
527.0
View Original
Reddit 3 weeks, 4 days ago
RedPacketSecurity

CVE Alert: CVE-2025-32462

1
1.0
View Original

References

https://www.sudo.ws/security/advisories/
https://www.sudo.ws/releases/changelog/
https://www.stratascale.com/vulnerability-alert-CVE-2025-32462-sudo-host
https://www.openwall.com/lists/oss-security/2025/06/30/2
https://www.secpod.com/blog/sudo-lpe-vulnerabilities-resolved-what-you-need-to-know-about-cve-2025-32462-and-cve-2025-32463/
https://www.sudo.ws/security/advisories/host_any/
Published: 2025-06-30T00:00:00.000Z
Last Modified: 2025-07-19T02:21:36.131Z
Copied to clipboard!