sudo project News Articles

PoC Released for Sudo chroot Flaw Allowing Local Privilege Escalation

A new proof-of-concept (PoC) - CVE-2025-32463, exploit has been published for a critical flaw in the widely used sudo utility.

3 weeks ago

New PoC Exploit Released for Sudo Chroot Privilege Escalation Vulnerability

A critical vulnerability in the widely used Sudo utility has come under scrutiny following the public release of a proof-of-concept exploit, raising alarms for Linux system administrators worldwide.

3 weeks ago

PoC Published for Sudo Flaw Lets Attackers Escalate to Root

A PoC exploit has been released for CVE-2025-32463, a critical local privilege escalation vulnerability affecting the Sudo binary.

1 month ago

Proof-of-Concept Published for Sudo Vulnerability That Grants Root Access

This malicious code lets attackers swiftly obtain root privileges on affected Linux systems, placing untold numbers of enterprises at significant risk.

CISA warns of critical Linux Sudo flaw exploited in attacks

Hackers are actively exploiting a critical vulnerability (CVE-2025-32463) in the sudo package that enables the execution of commands with root-level privileges on Linux operating systems.

CISA Sounds Alarm on Critical Sudo Flaw Actively Exploited in Linux and Unix Systems

CISA adds critical Sudo flaw CVE-2025-32463 and four other exploited vulnerabilities to KEV list.

Two bugs for Linux Sudo utility patched, one rated  critical

Teams told to patch both because each bug could let attackers fully take over an enterprise system.

Week in review: Sudo local privilege escalation flaws fixed, Google patches actively exploited Chrome - Help Net Security

Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: Sudo local privilege escalation vulnerabilities fixed

Critical Sudo bugs expose major Linux distros to local Root exploits

Critical Sudo flaws let local users gain root access on Linux systems, the vulnerabilities affect major Linux distributions.

Critical Sudo Vulnerabilities Let Local Users Gain Root Access on Linux, Impacting Major Distros

Two critical vulnerabilities in Sudo command-line tool allow privilege escalation for local attackers on Linux systems

Critical sudo flaw allows Linux users to gain root privileges.

Cisco patches maximum-severity flaw in Unified Communications Manager. Hunters International shuts down operations.

12-Year-Old Sudo Vulnerability Exposes Linux Systems to Privilege Escalation

The flaw, present in Sudo’s codebase for over 12 years, was discovered by Rich Mirch of the Stratascale Cyber Research Unit and affects both stable (v1.9.0–1.9.17) and legacy (v1.8.8–1.8.32) versions of Sudo.

12-Year-Old Sudo Vulnerability Exposes Linux Systems to Root Privilege Escalation

A newly disclosed vulnerability in the Sudo command-line tool, present for over 12 years, has exposed countless Linux and Unix-like systems.

12-Year-Old Sudo Linux Vulnerability Enables Privilege Escalation to Root User

A significant security vulnerability discovered in the widely used Sudo utility has remained hidden for over 12 years, potentially exposing millions of Linux and Unix systems to privilege escalation attacks. 

Linux Pwned! Privilege Escalation on SUDO in 5 seconds. HackerHood tests the CVE-2025-32463 exploit

Critical vulnerability in SUDO: Privilege escalation to root on Linux, risks and solutions. Exploit testing of CVE-2025-32463.

chwoot: Critical Linux vulnerability makes users root on most systems

An example exploit is available online and works on many standard systems. Admins should quickly install the available updates.

Sudo local privilege escalation vulnerabilities fixed (CVE-2025-32462, CVE-2025-32463) - Help Net Security

If you haven't recently updated the Sudo utility on your Linux box(es), you should do so now, to patch CVE-2025-32462 and CVE-2025-32463.

Linux Sudo chroot Vulnerability Enables Hackers to Elevate Privileges to Root

A security vulnerability in the widely used Linux Sudo utility has been disclosed, allowing any local unprivileged user to escalate privileges. 

CVE-2023-22809 Impact of Sudo Vulnerability CVE-2023-22809

Palo Alto Networks Security Advisory: CVE-2023-22809 Impact of Sudo Vulnerability CVE-2023-22809 The Palo Alto Networks Product Security Assurance team has evaluated the sudo software vulnerability CVE-2023-22809 and has determined that the following Palo Alto Networks products do not expose the sud...

nabbisen — DEV Community Profile

Founder of Scqr Inc. (scqr.net) Apps dev and c/s monk. IT ｽﾄﾗﾃｼﾞｽﾄ. Interested: Social relationships. OpenBSD/Rust etc.