CVE-2025-32463 PoC — Sudo 安全漏洞

Source

https://github.com/mirchr/CVE-2025-32463-sudo-chwoot

Associated Vulnerability

Title:Sudo 安全漏洞 (CVE-2025-32463)
Description:Sudo是一款使用于类Unix系统的，允许用户通过安全的方式使用特殊的权限执行命令的程序。 Sudo 1.9.17p1之前版本存在安全漏洞，该漏洞源于使用用户控制目录中的/etc/nsswitch.conf可能导致获取root访问权限。

Description

PoC for CVE-2025-32463 - Sudo chroot Elevation of Privilege Vulnerability

Readme

# CVE-2025-32463-sudo-chwoot
### PoC for CVE-2025-32463 - Sudo chroot Elevation of Privilege Vulnerability
- Original PoC [sudo-chwoot.sh](sudo-chwoot.sh)
- CTF Demo [chwoot-demo.c](chwoot-demo.c)

#### Docs
- Write-up: https://www.stratascale.com/vulnerability-alert-CVE-2025-32463-sudo-chroot
- Advisory: https://www.sudo.ws/security/advisories/chroot_bug/


#### Other PoCs
> ⚠️ **Warning**: These PoCs have not been verified. **Use at your own risk**
- Dockerized version https://github.com/pr0v3rbs/CVE-2025-32463_chwoot

File Snapshot


 [4.0K]  /data/pocs/fb00147bc7b411dd558619a9a501f43436a14a0b
├── [ 641]  chwoot-demo.c
├── [ 530]  README.md
└── [ 637]  sudo-chwoot.sh

0 directories, 3 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!