Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1310 CNY

100%
Buy Us a Coffee

CVE-2025-32463 PoC — Sudo 安全漏洞

Source
https://github.com/AC8999/CVE-2025-32463
Associated Vulnerability
Title:Sudo 安全漏洞 (CVE-2025-32463)
Description:Sudo before 1.9.17p1 allows local users to obtain root access because /etc/nsswitch.conf from a user-controlled directory is used with the --chroot option.
Description
A Python exploit for CVE-2025-32463, a critical local privilege escalation vulnerability in the Sudo binary on Linux systems. This flaw allows local users to obtain root access by exploiting the --chroot option, which incorrectly uses /etc/nsswitch.conf from a user-controlled directory.
Readme
Vulnerability Overview
CVE-2025-32463 affects Sudo versions 1.9.14 through 1.9.16 (fixed in 1.9.17p1). 

When Sudo is invoked with the --chroot option, it may load configuration from an attacker-controlled path, leading to arbitrary code execution and privilege escalation to root.

Usage: python3 CVE-2025-32463.py 
- this should pop a root shell (video POC demonstrated) 

CVSS Score: 7.8 (High)
Impact: Local privilege escalation to root.
Affected Systems: Linux distributions with vulnerable Sudo (e.g., Ubuntu 24.04 LTS, RHEL, etc.).

Requirements

Python 3.8+

Linux system with vulnerable Sudo (check with sudo --version).
Local user account with ability to execute Sudo commands.
File Snapshot

Log in to view the POC file snapshot cached by Shenlong Bot

Log in to view
Remarks
    1. It is advised to access via the original source first.
    2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.
    3. Mirroring, verifying, and maintaining this POC archive takes ongoing effort, so local snapshots are a paid feature. Your subscription keeps the archive online — thank you for the support. View subscription plans →