CVE-2025-32463

This repository contains a proof-of-concept exploit for CVE-2025-32463, a privilege escalation vulnerability in sudo's chroot feature. The exploit leverages a flawed chroot implementation to spawn a root shell by manipulating the NSS (Name Service Switch) configuration.

This repository contains a functional local privilege escalation (LPE) exploit for CVE-2025-32463, targeting a vulnerability in sudo's chroot functionality. The exploit leverages a crafted shared library to escalate privileges to root.

This repository contains a privilege escalation exploit for CVE-2025-32463, targeting sudo versions 1.9.14 to 1.9.16. The exploit leverages the `--chroot` option in sudo to execute a malicious shared library, granting root access without requiring gcc on the target system.

This PoC exploits CVE-2025-32463, a local privilege escalation vulnerability in sudo versions 1.9.14 to 1.9.17. It abuses the --chroot (-R) feature by creating a malicious shared object in a fake chroot environment, leading to root privilege execution.

This repository contains a PoC for CVE-2025-32463, a sudo chroot elevation of privilege vulnerability. The exploit leverages a race condition in sudo's chroot handling to escalate privileges to root.

This repository contains a Go-based exploit for CVE-2025-32463, a local privilege escalation vulnerability in sudo versions 1.9.14 to 1.9.17. The exploit manipulates the chroot environment to load a malicious shared library, granting root access.

This repository contains a functional PoC exploit for CVE-2025-32463, a local privilege escalation vulnerability in sudo versions 1.9.14 to 1.9.17. The exploit leverages a chroot environment and a precompiled library to escalate privileges to root.

The repository contains a functional SQL injection exploit for CVE-2025-10042, targeting WordPress Quiz Maker plugin versions <= 6.7.0.56. The exploit uses time-based blind SQLi to extract admin credentials and hashes.

This repository demonstrates a full forensic investigation and attack simulation involving a Python dependency confusion attack, privilege escalation via CVE-2025-32463 (vulnerable sudo), deployment of a Sliver C2 beacon, and a custom rootkit with kernel module loading and syscall hooking. It includes scripts, setup instructions, and detailed analysis steps for replication.

This repository contains a detailed writeup about CVE-2025-32463 and CVE-2025-32462, two sudo privilege escalation vulnerabilities. It explains the root cause, exploitation technique, affected versions, and mitigation steps.

This exploit leverages a vulnerability in sudo (CVE-2025-32463) to achieve local privilege escalation by injecting a malicious shared library via the -R flag, bypassing security checks. The payload spawns a root shell or executes arbitrary commands.

This is a functional privilege escalation exploit for CVE-2025-32463, targeting a vulnerability in sudo versions 1.9.14 through 1.9.17. The exploit leverages improper path validation in sudo's chroot functionality to load a malicious NSS library, granting root privileges.

This repository contains a functional privilege escalation PoC for CVE-2025-32463, exploiting sudo's -R option with manipulated NSS configurations to gain root access. The exploit compiles a malicious shared library that spawns a root shell when loaded.

This repository contains a functional exploit PoC for CVE-2025-32463, a sudo chroot NSS library escape vulnerability, and CVE-2025-32462, a sudo host matching logic bypass. It includes a Docker-based lab environment, detailed exploitation steps, and an automated script to trigger the vulnerability.

The repository contains a functional exploit for CVE-2025-32463, a privilege escalation vulnerability in sudo versions 1.9.14 to 1.9.17. The exploit leverages the chroot (`-R` flag) feature to gain root access by manipulating the `nsswitch.conf` file and injecting a malicious shared library.

This exploit leverages a vulnerability in Sudo (CVE-2025-32463) to achieve local privilege escalation by manipulating the chroot environment and injecting a malicious shared library. The PoC compiles a shared object that spawns a root shell when loaded by Sudo.

This repository provides a Docker-based lab environment for CVE-2025-32463, a sudo local privilege escalation vulnerability. It includes a PoC exploit script (`sudo-chwoot.sh`) that leverages a chroot bypass to gain root access.

This repository contains a proof-of-concept exploit for CVE-2025-32463, a local privilege escalation vulnerability in sudo versions 1.9.14 to 1.9.17. The exploit abuses the --chroot (-R) feature to load a malicious NSS module with root privileges.

This repository contains a functional privilege escalation exploit for CVE-2025-32463, targeting a design flaw in sudo's chroot option processing. The exploit manipulates the NSS library loading mechanism to gain root access via a malicious shared library.

This repository contains a Python PoC for CVE-2025-32463, a local privilege escalation vulnerability in Sudo versions 1.9.14 to 1.9.17. The exploit leverages a malicious nsswitch.conf file and a custom NSS module to gain root privileges via the --chroot (-R) option.

The repository contains a scanner for CVE-2024-21762, which checks for the presence of the vulnerability in Fortinet SSL VPN interfaces by sending crafted HTTP requests. It does not include exploit code but provides detection capabilities.

This repository contains a PoC for CVE-2025-32463, a local privilege escalation (LPE) vulnerability in sudo's handling of the -R option. The exploit leverages a malicious shared library to escalate privileges to root, with support for both compiled and precompiled payloads.

This PoC demonstrates a local privilege escalation (LPE) via CVE-2025-32463 by abusing `sudo -R` with a malicious NSS module to drop a setuid root shell. The exploit leverages unsafe handling of `nsswitch.conf` and NSS shared libraries in a chroot environment.

This repository contains a Docker-based lab and a functional exploit for CVE-2025-32463, a local privilege escalation vulnerability in sudo versions 1.9.14 to 1.9.17. The exploit abuses the `--chroot` option and a malicious NSS module to gain root access.

This repository contains a functional local privilege escalation exploit for CVE-2025-32463, leveraging sudo's chroot option to execute arbitrary code as root via a malicious nsswitch.conf and shared library. The exploit compiles a C payload into a shared library and manipulates sudo's behavior to gain root access.

The repository claims to contain an exploit for CVE-2025-32463 but only provides a README with generic instructions and no actual exploit code. It references an ExploitDB entry but does not include functional code or technical details.

This PoC exploits CVE-2025-32463, a privilege escalation vulnerability in Sudo versions 1.9.14 to 1.9.17, by manipulating the chroot feature and leveraging a malicious shared library to gain root access.

This repository contains a proof-of-concept exploit for CVE-2025-32463, which leverages a vulnerability in sudo to escalate privileges to root via the chroot option. The exploit involves compiling a shared library that hooks into the sudo binary to execute arbitrary commands with root privileges.

This exploit leverages a vulnerability in sudo before 1.9.17p1 where the --chroot option improperly uses /etc/nsswitch.conf from a user-controlled directory, allowing local privilege escalation to root. The PoC compiles a shared library that spawns a root shell when loaded via a crafted nsswitch.conf.

This is a Rust-based exploit for CVE-2025-32463, a sudo privilege escalation vulnerability. It leverages a malicious shared library to escalate privileges to root by exploiting sudo's handling of the NSS (Name Service Switch) configuration.

This exploit abuses the LD_PRELOAD environment variable in vulnerable sudo versions (1.9.14-1.9.17) to achieve local privilege escalation by injecting a malicious shared library that spawns a root shell.

This repository contains a functional exploit for CVE-2025-32463, a local privilege escalation vulnerability in sudo versions 1.9.14 to 1.9.17. The exploit leverages the --chroot option to force sudo to load a malicious NSS library, resulting in root code execution.

This repository contains a functional exploit for CVE-2025-32463, targeting a vulnerability in sudo versions 1.9.14 to 1.9.17. The exploit leverages a malicious shared library to escalate privileges to root by manipulating the `sudo -R` feature.

This repository contains a proof-of-concept exploit for CVE-2025-32463, a sudo privilege escalation vulnerability via chroot manipulation. The exploit leverages a malicious shared library to escalate privileges to root.

This PoC exploits CVE-2025-32463, a privilege escalation vulnerability in sudo v1.9.14+ where chroot's NSS handling allows loading malicious shared libraries via a crafted /etc/nsswitch.conf. The exploit constructs a fake chroot environment with a malicious NSS module to gain root execution.

This PoC exploits CVE-2025-32463, a local privilege escalation vulnerability in sudo (v1.9.14 - v1.9.17) via the --chroot option. It creates a malicious chroot environment with a fake NSS module to execute code as root.

This repository contains a functional local privilege escalation exploit for CVE-2025-32463, leveraging sudo's -R/--chroot option to load attacker-controlled NSS modules from a user-supplied chroot environment. The exploit compiles a shared library (exp.c) that escalates privileges to root via setreuid/setregid and spawns a root shell.

This is a proof-of-concept exploit for CVE-2023-42456, targeting a privilege escalation vulnerability in sudo versions 1.9.14 through 1.9.16p1. The exploit leverages NSS library hijacking via the `-R` chroot flag to gain root access.

The repository contains minimal setup instructions for a lab environment related to CVE-2025-32463 but lacks exploit code or technical details. It only includes a Docker Compose command and a connection instruction.

This repository contains a functional exploit for CVE-2025-32463, a vulnerability in sudo versions 1.9.14 to 1.9.16. The exploit leverages the --chroot option to achieve local privilege escalation (LPE) by manipulating the NSS (Name Service Switch) configuration to execute arbitrary code as root.

This repository provides a manual patching guide and script for CVE-2025-32463, a local privilege escalation vulnerability in Sudo versions 1.9.14–1.9.17. The script automates the process of downloading, compiling, and installing a patched version of Sudo (1.9.17p1) and includes additional steps to sanitize the sudoers file.

This repository contains a working PoC exploit for CVE-2025-32463, a local privilege escalation vulnerability in Linux systems via the `sudo chroot` command. The exploit leverages a malicious shared library to escalate privileges to root.

This PoC exploits a local privilege escalation vulnerability in sudo versions 1.9.14 to 1.9.17 by leveraging the --chroot option to load a malicious NSS library, resulting in root shell access.

The repository contains only a README.md file with a placeholder for CVE-2025-32463, indicating no functional exploit code or technical details are present.

This repository provides a detection framework for CVE-2025-32463, a privilege escalation vulnerability in sudo versions 1.9.14 through 1.9.17. It includes tools for monitoring system logs, command history, and process behavior to identify exploitation attempts.

This PoC exploits a vulnerability in `sudo` where it incorrectly parses `nsswitch.conf` after a `chroot`, leading to arbitrary library loading and privilege escalation. The `evil.c` file demonstrates a constructor-based payload that escalates privileges to root and spawns a shell.

This exploit leverages a vulnerability in sudo (CVE-2025-32463) to achieve local privilege escalation by manipulating the nsswitch configuration and loading a malicious shared library. The PoC compiles a C program that spawns a root shell via a constructor function, then uses sudo's -R flag to trigger the exploit.

This repository contains a functional proof-of-concept exploit for CVE-2025-32463, a local privilege escalation vulnerability in sudo's chroot feature. The exploit leverages a race condition in NSS library loading to escalate privileges to root.

This exploit leverages a vulnerability in sudo before 1.9.17p1 where the --chroot option improperly uses /etc/nsswitch.conf from a user-controlled directory, allowing local privilege escalation to root. The PoC compiles a shared library with a constructor that spawns a root shell, then uses sudo -R to trigger the exploit.

This exploit leverages a sudo chroot vulnerability (CVE-2025-32463) to achieve local privilege escalation by manipulating the nsswitch.conf file and loading a malicious shared library. The payload spawns a root shell upon execution.

This repository contains a proof-of-concept exploit for CVE-2025-32463, a privilege escalation vulnerability in sudo's chroot feature. The exploit leverages a malicious shared library to escalate privileges to root within a chroot environment.

This exploit leverages a vulnerability in sudo (CVE-2025-32463) to achieve local privilege escalation by manipulating the nsswitch configuration and loading a malicious shared library. The payload spawns a root shell via a constructor function in a compiled C library.

This repository contains a functional privilege escalation exploit for CVE-2025-32463, targeting sudo versions 1.9.14 through 1.9.17. The exploit leverages a fake NSS module and the `sudo -R` feature to execute arbitrary commands as root.

This repository contains a local privilege escalation exploit for CVE-2025-32463, targeting a vulnerability in the `sudo` command. The exploit leverages improper input validation to execute commands with root privileges via a crafted shared library and `nsswitch.conf` manipulation.

This PoC exploits a race condition in sudo's chroot feature (CVE-2025-32463) by loading a malicious NSS library with root privileges, leading to local privilege escalation. The exploit compiles a shared library with a constructor that spawns a root shell when loaded by sudo during chroot operations.

This is a Rust-based exploit for CVE-2025-32463, a sudo chroot vulnerability that allows privilege escalation by manipulating the nsswitch.conf file to load a malicious shared library. The payload spawns a root shell upon execution.

This exploit leverages a vulnerability in sudo (CVE-2025-32463) to achieve local privilege escalation by manipulating the NSS (Name Service Switch) configuration via a malicious shared object. The exploit creates a fake chroot environment and tricks sudo into loading the malicious library, granting root access.

This exploit leverages a vulnerability in sudo's chroot functionality to escalate privileges to root by manipulating the nsswitch.conf file and injecting a malicious shared library. The PoC demonstrates a local privilege escalation (LPE) attack on Linux systems.

This exploit leverages a vulnerability in sudo (CVE-2025-32463) to achieve local privilege escalation by manipulating the nsswitch configuration and loading a malicious shared library. The exploit drops into a root shell or executes arbitrary commands as root.

This PoC exploits a theoretical privilege escalation vulnerability in sudo (CVE-2025-32463) by manipulating the NSS configuration and loading a malicious shared library via the chroot functionality. The script dynamically decodes and writes a base64-encoded .so library to achieve elevated command execution.

This is a functional local privilege escalation (LPE) exploit for CVE-2025-32463, targeting a sudo chroot escape vulnerability. It leverages a malicious shared library and sudo's chroot handling to gain root access.

This PoC exploits CVE-2025-32463 by manipulating the Name Service Switch (NSS) configuration to load a malicious shared library, achieving local privilege escalation (LPE) via sudo. The exploit creates a fake NSS module that spawns a root shell when loaded.

This is a Python-based exploit for CVE-2025-32463, a local privilege escalation vulnerability in Sudo versions 1.9.14 through 1.9.16. The exploit leverages the --chroot option to load attacker-controlled configuration, leading to arbitrary code execution as root.

This repository contains a functional exploit for CVE-2025-32463, a local privilege escalation vulnerability in sudo versions 1.9.14 to 1.9.17. The exploit abuses the --chroot option to load a malicious shared library, granting root access.

This exploit leverages a path resolution issue in Sudo 1.9.17 (CVE-2025-32463) where the --chroot option is evaluated before permission checks, allowing local privilege escalation to root via a malicious nsswitch.conf and shared library.

This repository contains a functional privilege escalation exploit for CVE-2025-32463, targeting a vulnerability in sudo versions 1.9.14 to 1.9.17. The exploit leverages a flaw in sudo's chroot support combined with nsswitch to escalate privileges to root.

The repository contains a functional exploit for CVE-2025-32463, a local privilege escalation vulnerability in Sudo (versions 1.9.14 to 1.9.17) that abuses the `--chroot` option to load malicious libraries via a crafted `/etc/nsswitch.conf`.

This is a Python-based PoC for CVE-2025-32463, a local privilege escalation vulnerability in sudo versions 1.9.14 through 1.9.17. It exploits the Name Service Switch (NSS) mechanism to load a malicious shared object, escaping the chroot environment and executing arbitrary code as root.

This repository contains a functional exploit for CVE-2025-32463, targeting a vulnerability in sudo 1.9.16p2. The exploit leverages a malicious shared library to escalate privileges to root via the sudo -R command.

This exploit leverages a vulnerability in sudo (CVE-2025-32463) to achieve local privilege escalation (LPE) by manipulating the nsswitch configuration and loading a malicious shared library. The exploit compiles a shared object that spawns a root shell via a constructor function and tricks sudo into executing it.

This repository contains a functional proof-of-concept exploit for CVE-2025-32463, a local privilege escalation vulnerability in sudo versions prior to 1.9.17p1. The exploit leverages a chroot-like environment to manipulate library resolution and gain root privileges.

This repository contains a functional local privilege escalation (LPE) exploit for CVE-2025-32463 in sudo versions 1.9.14 to 1.9.17. The exploit leverages a vulnerability in sudo's chroot support combined with nsswitch to escalate privileges to root.

This repository contains a functional exploit for CVE-2025-32463, a local privilege escalation vulnerability in sudo versions 1.9.14 to 1.9.17 (before 1.9.17p1). The exploit leverages the `-R` (chroot) option to load a malicious NSS library, granting root access to any local user.

This repository contains a functional exploit for CVE-2025-32463, a local privilege escalation vulnerability in sudo versions 1.9.14 to 1.9.17 (before 1.9.17p1). The exploit leverages the `-R` (chroot) option to load a malicious NSS library, granting root access to any local user.

This PoC exploits a vulnerability in sudo (likely CVE-2025-32463) by manipulating the nsswitch configuration to load a malicious shared library, achieving local privilege escalation (LPE). The script compiles a shared object that spawns a root shell via a constructor function, then tricks sudo into loading it via a crafted environment.

This repository contains a functional exploit for CVE-2025-32463, a privilege escalation vulnerability in sudo's chroot feature. The exploit leverages a flaw in sudo versions 1.9.14 to 1.9.17, allowing an attacker to escalate privileges to root by manipulating the chroot environment and exploiting improper handling of the -R option.

This repository provides a Docker-based lab to demonstrate CVE-2025-32463, a privilege escalation vulnerability via misconfigured sudo permissions. It includes a setup script to build a Debian environment with a user configured to exploit sudo without a password.

This PoC exploits CVE-2025-32463, a local privilege escalation vulnerability in Sudo versions 1.9.14 through 1.9.17, by manipulating the nsswitch.conf file to load a malicious shared library, resulting in root access.

This Metasploit module exploits a privilege escalation vulnerability in Sudo versions 1.9.14 to 1.9.17 by manipulating the `chroot` option to load a malicious shared object, thereby gaining root privileges.

This repository contains a functional exploit for CVE-2025-32463, a local privilege escalation vulnerability in sudo versions 1.9.14 to 1.9.17. The exploit leverages the --chroot option to force sudo to load a malicious NSS library, resulting in root code execution.

The repository contains a functional exploit for CVE-2025-32463, a sudo privilege escalation vulnerability. The PoC script demonstrates the vulnerability by leveraging sudo's improper handling of chroot environments to escalate privileges.

This repository contains a functional Docker-based lab and exploit for CVE-2025-32463, a local privilege escalation vulnerability in sudo (1.9.14 to 1.9.17). The exploit abuses the `--chroot` option and a malicious NSS module to gain root access.

This repository contains a functional Python-based PoC for CVE-2025-32463, a local privilege escalation vulnerability in sudo versions 1.9.14 through 1.9.17. The exploit abuses the Name Service Switch (NSS) mechanism to load a malicious shared object, allowing an attacker to escape a chroot environment and execute arbitrary code as root.

This exploit leverages a vulnerability in sudo's chroot functionality (CVE-2025-32463) to achieve local privilege escalation by tricking sudo into loading a malicious shared library via a crafted /etc/nsswitch.conf file. The PoC compiles a shared library that spawns a root shell when loaded.