Security researchers have identified two newly disclosed vulnerabilities in Sudo, the widely used Linux and Unix utility that allows users to execute commands with elevated privileges.

These flaws could allow local attackers to gain root access, posing a serious risk across affected systems.

Sudo is essential for controlled privilege escalation in Unix-like environments. These new CVEs highlight a critical gap in versions widely deployed across enterprise and development infrastructure.

Key Vulnerabilities

• CVE-2025-32463 (CVSS 9.3 – Critical):
  A vulnerability in Sudo’s chroot functionality affects versions 1.9.14 to 1.9.17. Local users can exploit this flaw to gain full root access. Earlier versions are unaffected, as the chroot feature wasn’t present.
• CVE-2025-32462 (CVSS 2.8 – Low):
  A privilege escalation issue in the Sudo host option, impacting both stable (1.9.0–1.9.17) and legacy (1.8.8–1.8.32) versions. Though less severe, this vulnerability has existed for over a decade.

Affected systems include major Linux distributions like Ubuntu and Fedora, as well as macOS Sequoia, which shares the Unix-based architecture.

Fizen Technology Response

Our team is actively monitoring for indicators of compromise and applying vendor-recommended patches as they’re released. As always, we follow a layered defense strategy to minimize exposure and risk.

Recommended Action

There are no current workarounds for these vulnerabilities. Organizations should take the following steps immediately:

1. Upgrade Sudo to version 1.9.17p1
   • This release addresses both CVEs.
2. Audit Sudo configurations
   • Review the use of Host and Host_Alias settings in:

• /etc/sudoers
• /etc/sudoers.d/
• LDAP-based policies (using ldapsearch or equivalent tools)

Next Steps

• Ensure all systems using Sudo are patched without delay.
• Our team will continue to monitor developments.