vulnerability

Red Hat: CVE-2025-32462: sudo: LPE via host option (Multiple Advisories)

Name: Red Hat: CVE-2025-32462: sudo: LPE via host option (Multiple Advisories)
Creator: Red Hat
Published: 2025-06-30T00:00:00.000Z
Keywords: CVE, CWE-863, Red Hat, 2025, 32462, sudo, redhat-upgrade-sudo, redhat-upgrade-sudo-debuginfo, redhat-upgrade-sudo-debugsource, redhat-upgrade-sudo-devel, redhat-upgrade-sudo-python-plugin, redhat-upgrade-sudo-python-plugin-debuginfo, Severity 7

Try Surface Command

Back to search

Severity

CVSS

(AV:L/AC:M/Au:S/C:C/I:C/A:C)

Published

Jun 30, 2025

Added

Jul 2, 2025

Modified

Jun 17, 2026

Description

Sudo before 1.9.17p1, when used with a sudoers file that specifies a host that is neither the current host nor ALL, allows listed users to execute commands on unintended machines.

Solutions

redhat-upgrade-sudoredhat-upgrade-sudo-debuginforedhat-upgrade-sudo-debugsourceredhat-upgrade-sudo-develredhat-upgrade-sudo-python-pluginredhat-upgrade-sudo-python-plugin-debuginfo

References

CWE-863
EUVD-EUVD-2025-20867
NVD-CVE-2025-32462
REDHAT-RHSA-2025:10110
REDHAT-RHSA-2025:10707
REDHAT-RHSA-2025:10779
REDHAT-RHSA-2025:10871
REDHAT-RHSA-2025:11537
REDHAT-RHSA-2025:9978
https://euvd.enisa.europa.eu/vulnerability/EUVD-2025-20867

Rapid7 Labs

2026 Global Threat Landscape Report

The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.

Get report