CVE-2025-32462

This exploit leverages a misconfiguration in Sudo's Host_Alias handling, allowing a low-privilege user to bypass restrictions by specifying a remote host rule via the -h option, granting unauthorized root access. The vulnerability arises from Sudo incorrectly validating remote host rules for local execution.

This repository contains a PoC script for CVE-2025-32462, a sudo privilege escalation vulnerability. The script checks for users with NOPASSWD:ALL privileges in /etc/sudoers and attempts to escalate privileges by switching to the identified user.

This repository contains a functional exploit PoC for CVE-2025-32462, a privilege escalation vulnerability in sudo versions ≤ 1.9.17. The exploit leverages the `-h` option to bypass RunAs restrictions and execute commands as root.

This repository contains a functional PoC for two sudo vulnerabilities: CVE-2025-32462 (host matching logic bypass) and CVE-2025-32463 (chroot NSS library escape). The PoC includes a Docker-based lab environment and scripts to demonstrate privilege escalation.

This PoC exploits a vulnerability in sudo (CVE-2025-32462) where the `-h/--host` option does not enforce host-based restrictions in non-`-l` scenarios, allowing privilege escalation via misconfigured sudoers rules. The exploit leverages Docker to demonstrate how an attacker can escalate privileges by bypassing host-specific sudoers restrictions.

This repository contains a functional PoC for CVE-2025-32462 and CVE-2025-32463, demonstrating sudo host validation bypass and NSS library injection for privilege escalation. It includes a Docker-based lab environment, exploit code, and detailed technical analysis.

This exploit leverages CVE-2025-32462 to bypass sudo's host restrictions, allowing privilege escalation on Linux systems where sudo is configured with NOPASSWD rights for the -h option. It provides a pseudo-root shell by abusing the sudo -h command to execute arbitrary commands.

This repository contains a functional exploit for CVE-2025-32462, demonstrating a local privilege escalation vulnerability in sudo versions < 1.9.17. The exploit bypasses hostname-based restrictions by using the `-h` flag to spoof a whitelisted hostname, allowing restricted users to gain root access.

This repository contains a detailed writeup and proof-of-concept for CVE-2025-32462, a local privilege escalation vulnerability in sudo that allows bypassing hostname-restricted sudo rules. The PoC demonstrates how a low-privileged user can execute commands as root by exploiting the flawed handling of the `-h` option in vulnerable sudo versions.

This repository contains detection scripts for CVE-2025-32462 and CVE-2025-32463, which are vulnerabilities in sudo. The scripts check the installed version of sudo and potential misuse of specific options (-h and --chroot).

This PoC exploits CVE-2025-32462, a sudo -h bypass vulnerability, allowing arbitrary command execution as root. It constructs a sudo command with user-provided input and executes it via system().