Exposures › CVE-2025-32463
CVE-2025-32463
Severity
high · on CISA KEV actively exploited
Source
CISA-KEV · kev
Published
2025-09-29
Reference
⚡ RCE
⌖ exploited in the wild
shame 65/100
rceexploited-in-wild
Sudo contains an inclusion of functionality from untrusted control sphere vulnerability. This vulnerability could allow local attacker to leverage sudo’s -R (--chroot) option to run arbitrary commands as root, even if they are not listed in the sudoers file.
Players implicated
Description
Sudo contains an inclusion of functionality from untrusted control sphere vulnerability. This vulnerability could allow local attacker to leverage sudo’s -R (--chroot) option to run arbitrary commands as root, even if they are not listed in the sudoers file.
Affected FedRAMP products 0 in the catalog
No correlated FedRAMP products.