CVE-2025-32462HIGH 8.8EPSS p86.7%
CVE-2025-32462CVE-2025-32462
Description
Sudo before 1.9.17p1, when used with a sudoers file that specifies a host that is neither the current host nor ALL, allows listed users to execute commands on unintended machines.
Scoring
| CVSS 3.1 | 8.8 (HIGH) |
| Vector | CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H |
| EPSS | 3.24% probability of exploitation · percentile 86.7% · 2026-06-18T12:00:27Z |
| Published | 2025-06-30 |
| Last modified | 2025-11-03 |
Underlying weaknesses· 1
References
- https://access.redhat.com/security/cve/cve-2025-32462
- https://bugs.gentoo.org/show_bug.cgi?id=CVE-2025-32462
- https://explore.alas.aws.amazon.com/CVE-2025-32462.html
- https://lists.debian.org/debian-security-announce/2025/msg00118.html
- https://security-tracker.debian.org/tracker/CVE-2025-32462
- https://ubuntu.com/security/notices/USN-7604-1
- https://www.openwall.com/lists/oss-security/2025/06/30/2
- https://www.secpod.com/blog/sudo-lpe-vulnerabilities-resolved-what-you-need-to-know-about-cve-2025-32462-and-cve-2025-32463/
1
| Type | Target | Confidence | Tier |
|---|---|---|---|
| Weakness | Incorrect Authorizationcwe-863 | 0% | live |
Related by meaning· 6
Nearest entities by semantic similarity across the cs-graph corpus.