← ExploitWatch
HomeExploited Vulnerabilities

CVE-2025-32463 — Actively Exploited: Sudo (Sudo)

Sudo contains an inclusion of functionality from untrusted control sphere vulnerability. This vulnerability could allow local attacker to leverage sudo’s -R (--chroot) option to run arbitrary commands as root, even if they are not listed in the sudoers file.

CVE IDCVE-2025-32463
VendorSudo
ProductSudo
Vulnerability nameSudo Inclusion of Functionality from Untrusted Control Sphere Vulnerability
Date added2025-09-29
Remediation due2025-10-20
Known ransomware useUnknown
Required actionApply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
DescriptionSudo contains an inclusion of functionality from untrusted control sphere vulnerability. This vulnerability could allow local attacker to leverage sudo’s -R (--chroot) option to run arbitrary commands as root, even if they are not listed in the sudoers file.
SourceCISA Known Exploited Vulnerabilities

🔍 Search all exploited vulnerabilities →