CNNVD-202506-3715 Information
CNNVD ID
CNNVD-202506-3715
Related CVE
- CNNVD Published: 2025-06-30
Description (Chinese)
Sudo是一款使用于类Unix系统的,允许用户通过安全的方式使用特殊的权限执行命令的程序。 Sudo 1.9.17p1之前版本存在安全漏洞,该漏洞源于使用用户控制目录中的/etc/nsswitch.conf可能导致获取root访问权限。
Description (English)
Sudo is a procedure used in the type Unix system that allows users to use special privileges to enforce orders in a secure manner. Sudo 1.9.17 p1 has a security loophole, which stems from the use of /etc/nsswitch.conf in the user control directory, which may result in access to root.
Hazard Level
Medium
Vulnerability Type
其他
Affected Vendor
Live Support
Published
2025-06-30
Last Modified
2026-02-24
References
https://www.sudo.ws/releases/changelog/ https://www.sudo.ws/security/advisories/ https://www.openwall.com/lists/oss-security/2025/06/30/3 https://www.stratascale.com/vulnerability-alert-CVE-2025-32463-sudo-chroot https://vigilance.fr/vulnerability/Sudo-privilege-escalation-via-chroot-47568 https://access.redhat.com/security/cve/cve-2025-32463 https://www.exploit-db.com/exploits/52352 https://cxsecurity.com/issue/WLB-2025070037