CVE-2025-32463
Description
Sudo before 1.9.17p1 allows local users to obtain root access because /etc/nsswitch.conf from a user-controlled directory is used with the --chroot option.
Risk Information
Base Score
7.8
MODERATE
Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
25.721
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Provide limited super user privileges to specific users (USN-7604-1) sudo_1.9.15p5-3ubuntu5.24.04.1_amd64.deb | Linux |
| Provide limited super user privileges to specific users (USN-7604-1) sudo_1.9.15p5-3ubuntu5.24.04.1_i386.deb | Linux |
| Provide limited super user privileges to specific users (USN-7604-1) sudo_1.9.15p5-3ubuntu5.24.10.1_amd64.deb | Linux |
| Provide limited super user privileges to specific users (USN-7604-1) sudo_1.9.15p5-3ubuntu5.24.10.1_i386.deb | Linux |
| Provide limited super user privileges to specific users (USN-7604-1) sudo_1.9.16p2-1ubuntu1.1_amd64.deb | Linux |
| Provide limited super user privileges to specific users (USN-7604-1) sudo_1.9.16p2-1ubuntu1.1_i386.deb | Linux |
| Provide limited super user privileges to specific users (USN-7604-1) sudo_1.9.9-1ubuntu2.5_amd64.deb | Linux |
| Provide limited super user privileges to specific users (USN-7604-1) sudo_1.9.9-1ubuntu2.5_i386.deb | Linux |
| Provide limited super user privileges to specific users (USN-7604-1) sudo-ldap_1.9.15p5-3ubuntu5.24.04.1_amd64.deb | Linux |
| Provide limited super user privileges to specific users (USN-7604-1) sudo-ldap_1.9.15p5-3ubuntu5.24.04.1_i386.deb | Linux |
| Provide limited super user privileges to specific users (USN-7604-1) sudo-ldap_1.9.15p5-3ubuntu5.24.10.1_amd64.deb | Linux |
| Provide limited super user privileges to specific users (USN-7604-1) sudo-ldap_1.9.15p5-3ubuntu5.24.10.1_i386.deb | Linux |
| Provide limited super user privileges to specific users (USN-7604-1) sudo-ldap_1.9.16p2-1ubuntu1.1_amd64.deb | Linux |
| Provide limited super user privileges to specific users (USN-7604-1) sudo-ldap_1.9.16p2-1ubuntu1.1_i386.deb | Linux |
| Provide limited super user privileges to specific users (USN-7604-1) sudo-ldap_1.9.9-1ubuntu2.5_amd64.deb | Linux |
| Provide limited super user privileges to specific users (USN-7604-1) sudo-ldap_1.9.9-1ubuntu2.5_i386.deb | Linux |
| SUSE-SU-2025:02177-1(Basesystem Module 15 SP6) system-group-sudo-1.9.15p5-150600.3.9.1.x86_64.rpm | Linux |
| SUSE-SU-2025:02177-1(Basesystem Module 15 SP6) sudo-policy-wheel-auth-self-1.9.15p5-150600.3.9.1.x86_64.rpm | Linux |
| SUSE-SU-2025:02177-1(Basesystem Module 15 SP6) sudo-policy-sudo-auth-self-1.9.15p5-150600.3.9.1.x86_64.rpm | Linux |
| SUSE-SU-2025:02177-1(Basesystem Module 15 SP6) sudo-plugin-python-debuginfo-1.9.15p5-150600.3.9.1.x86_64.rpm | Linux |
| SUSE-SU-2025:02177-1(Basesystem Module 15 SP6) sudo-plugin-python-1.9.15p5-150600.3.9.1.x86_64.rpm | Linux |
| SUSE-SU-2025:02177-1(Basesystem Module 15 SP6) sudo-devel-1.9.15p5-150600.3.9.1.x86_64.rpm | Linux |
| SUSE-SU-2025:02177-1(Basesystem Module 15 SP6) sudo-debugsource-1.9.15p5-150600.3.9.1.x86_64.rpm | Linux |
| SUSE-SU-2025:02177-1(Basesystem Module 15 SP6) sudo-debuginfo-1.9.15p5-150600.3.9.1.x86_64.rpm | Linux |
| SUSE-SU-2025:02177-1(Basesystem Module 15 SP6) sudo-1.9.15p5-150600.3.9.1.x86_64.rpm | Linux |
| sudo Security Update (ALAS2023-2025-1070) sudo-python-plugin-1.9.15-1.p5.amzn2023.0.2.x86_64.rpm | Linux |
| sudo Security Update (ALAS2023-2025-1070) sudo-logsrvd-1.9.15-1.p5.amzn2023.0.2.x86_64.rpm | Linux |
| sudo Security Update (ALAS2023-2025-1070) sudo-devel-1.9.15-1.p5.amzn2023.0.2.x86_64.rpm | Linux |
| sudo Security Update (ALAS2023-2025-1070) sudo-1.9.15-1.p5.amzn2023.0.2.x86_64.rpm | Linux |
| sudo update (CESAS-2025-0139) sudo-python-plugin-1.9.15-9.p5.el10.x86_64.rpm | Linux |
| sudo update (CESAS-2025-0141) sudo-1.9.15-9.p5.el10.x86_64.rpm | Linux |
| rv update (CESAS-2025-0140) rv-6.12.0-105.el10.x86_64.rpm | Linux |
| rtla update (CESAS-2025-0140) rtla-6.12.0-105.el10.x86_64.rpm | Linux |
| perf update (CESAS-2025-0140) perf-6.12.0-105.el10.x86_64.rpm | Linux |
| libxml2 update (CESAS-2025-0139) libxml2-devel-2.12.5-7.el10.x86_64.rpm | Linux |
| libxml2 update (CESAS-2025-0142) libxml2-2.12.5-7.el10.x86_64.rpm | Linux |
| SUSE-SU-2025:02177-1(Basesystem Module 15 SP7) sudo-1.9.15p5-150600.3.9.1.x86_64.rpm | Linux |
| SUSE-SU-2025:02177-1(Basesystem Module 15 SP7) sudo-debuginfo-1.9.15p5-150600.3.9.1.x86_64.rpm | Linux |
| SUSE-SU-2025:02177-1(Basesystem Module 15 SP7) sudo-debugsource-1.9.15p5-150600.3.9.1.x86_64.rpm | Linux |
| SUSE-SU-2025:02177-1(Basesystem Module 15 SP7) sudo-devel-1.9.15p5-150600.3.9.1.x86_64.rpm | Linux |
| SUSE-SU-2025:02177-1(Basesystem Module 15 SP7) sudo-plugin-python-1.9.15p5-150600.3.9.1.x86_64.rpm | Linux |
| SUSE-SU-2025:02177-1(Basesystem Module 15 SP7) sudo-plugin-python-debuginfo-1.9.15p5-150600.3.9.1.x86_64.rpm | Linux |
| SUSE-SU-2025:02177-1(Basesystem Module 15 SP7) sudo-policy-sudo-auth-self-1.9.15p5-150600.3.9.1.x86_64.rpm | Linux |
| SUSE-SU-2025:02177-1(Basesystem Module 15 SP7) sudo-policy-wheel-auth-self-1.9.15p5-150600.3.9.1.x86_64.rpm | Linux |
| SUSE-SU-2025:02177-1(Basesystem Module 15 SP7) system-group-sudo-1.9.15p5-150600.3.9.1.x86_64.rpm | Linux |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234