๐Ÿ” CVE Alert

CVE-2025-32462

LOW 2.8
CVSS Score
2.8
EPSS Score
0.0%
EPSS Percentile
0th

Sudo before 1.9.17p1, when used with a sudoers file that specifies a host that is neither the current host nor ALL, allows listed users to execute commands on unintended machines.

CWE CWE-863
Vendor sudo project
Product sudo
Published Jun 30, 2025
Last Updated Jul 14, 2026
Stay Ahead of the Next One

Get instant alerts for sudo project sudo

Be the first to know when new low vulnerabilities affecting sudo project sudo are published โ€” delivered to Slack, Telegram or Discord.

Get Free Alerts โ†’ Free ยท No credit card ยท 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:L/A:N
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability

Affected Versions

Sudo project / Sudo
1.8.8 < 1.9.17p1

References

NVD โ†— CVE.org โ†— EPSS Data โ†—
sudo.ws: https://www.sudo.ws/security/advisories/ sudo.ws: https://www.sudo.ws/releases/changelog/ stratascale.com: https://www.stratascale.com/vulnerability-alert-CVE-2025-32462-sudo-host openwall.com: https://www.openwall.com/lists/oss-security/2025/06/30/2 ubuntu.com: https://ubuntu.com/security/notices/USN-7604-1 secpod.com: https://www.secpod.com/blog/sudo-lpe-vulnerabilities-resolved-what-you-need-to-know-about-cve-2025-32462-and-cve-2025-32463/ sudo.ws: https://www.sudo.ws/security/advisories/host_any/ lists.debian.org: https://lists.debian.org/debian-security-announce/2025/msg00118.html explore.alas.aws.amazon.com: https://explore.alas.aws.amazon.com/CVE-2025-32462.html bugs.gentoo.org: https://bugs.gentoo.org/show_bug.cgi?id=CVE-2025-32462 security-tracker.debian.org: https://security-tracker.debian.org/tracker/CVE-2025-32462 suse.com: https://www.suse.com/security/cve/CVE-2025-32462.html access.redhat.com: https://access.redhat.com/security/cve/cve-2025-32462 lists.debian.org: https://lists.debian.org/debian-lts-announce/2025/06/msg00033.html cert-portal.siemens.com: https://cert-portal.siemens.com/productcert/html/ssa-585531.html