Vulnerability Instance
Lookup for vulnerabilities affecting packages.
GET /api/vulnerabilities/36654?format=api
{ "url": "http://public2.vulnerablecode.io/api/vulnerabilities/36654?format=api", "vulnerability_id": "VCID-ztsc-935d-dbga", "summary": "Multiple vulnerabilities have been discovered in sudo, the worst of which could result in privilege escalation.", "aliases": [ { "alias": "CVE-2025-32463" } ], "fixed_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/493133?format=api", "purl": "pkg:apk/alpine/sudo@1.9.17_p1-r0?arch=aarch64&distroversion=edge&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/sudo@1.9.17_p1-r0%3Farch=aarch64&distroversion=edge&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/493134?format=api", "purl": "pkg:apk/alpine/sudo@1.9.17_p1-r0?arch=armhf&distroversion=edge&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/sudo@1.9.17_p1-r0%3Farch=armhf&distroversion=edge&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/493135?format=api", "purl": "pkg:apk/alpine/sudo@1.9.17_p1-r0?arch=armv7&distroversion=edge&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/sudo@1.9.17_p1-r0%3Farch=armv7&distroversion=edge&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/493136?format=api", "purl": "pkg:apk/alpine/sudo@1.9.17_p1-r0?arch=loongarch64&distroversion=edge&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/sudo@1.9.17_p1-r0%3Farch=loongarch64&distroversion=edge&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/493137?format=api", "purl": "pkg:apk/alpine/sudo@1.9.17_p1-r0?arch=ppc64le&distroversion=edge&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/sudo@1.9.17_p1-r0%3Farch=ppc64le&distroversion=edge&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/493138?format=api", "purl": "pkg:apk/alpine/sudo@1.9.17_p1-r0?arch=riscv64&distroversion=edge&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/sudo@1.9.17_p1-r0%3Farch=riscv64&distroversion=edge&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/493139?format=api", "purl": "pkg:apk/alpine/sudo@1.9.17_p1-r0?arch=s390x&distroversion=edge&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/sudo@1.9.17_p1-r0%3Farch=s390x&distroversion=edge&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/493140?format=api", "purl": "pkg:apk/alpine/sudo@1.9.17_p1-r0?arch=x86&distroversion=edge&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/sudo@1.9.17_p1-r0%3Farch=x86&distroversion=edge&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/493141?format=api", "purl": "pkg:apk/alpine/sudo@1.9.17_p1-r0?arch=x86_64&distroversion=edge&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/sudo@1.9.17_p1-r0%3Farch=x86_64&distroversion=edge&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/549661?format=api", "purl": "pkg:apk/alpine/sudo@1.9.17_p1-r0?arch=aarch64&distroversion=v3.23&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/sudo@1.9.17_p1-r0%3Farch=aarch64&distroversion=v3.23&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/549662?format=api", "purl": "pkg:apk/alpine/sudo@1.9.17_p1-r0?arch=armhf&distroversion=v3.23&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/sudo@1.9.17_p1-r0%3Farch=armhf&distroversion=v3.23&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/549663?format=api", "purl": "pkg:apk/alpine/sudo@1.9.17_p1-r0?arch=armv7&distroversion=v3.23&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/sudo@1.9.17_p1-r0%3Farch=armv7&distroversion=v3.23&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/549664?format=api", "purl": "pkg:apk/alpine/sudo@1.9.17_p1-r0?arch=loongarch64&distroversion=v3.23&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/sudo@1.9.17_p1-r0%3Farch=loongarch64&distroversion=v3.23&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/549665?format=api", "purl": "pkg:apk/alpine/sudo@1.9.17_p1-r0?arch=ppc64le&distroversion=v3.23&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/sudo@1.9.17_p1-r0%3Farch=ppc64le&distroversion=v3.23&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/549666?format=api", "purl": "pkg:apk/alpine/sudo@1.9.17_p1-r0?arch=riscv64&distroversion=v3.23&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/sudo@1.9.17_p1-r0%3Farch=riscv64&distroversion=v3.23&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/549667?format=api", "purl": "pkg:apk/alpine/sudo@1.9.17_p1-r0?arch=s390x&distroversion=v3.23&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/sudo@1.9.17_p1-r0%3Farch=s390x&distroversion=v3.23&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/549668?format=api", "purl": "pkg:apk/alpine/sudo@1.9.17_p1-r0?arch=x86&distroversion=v3.23&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/sudo@1.9.17_p1-r0%3Farch=x86&distroversion=v3.23&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/549669?format=api", "purl": "pkg:apk/alpine/sudo@1.9.17_p1-r0?arch=x86_64&distroversion=v3.23&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/sudo@1.9.17_p1-r0%3Farch=x86_64&distroversion=v3.23&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/955662?format=api", "purl": "pkg:apk/alpine/sudo@1.9.17_p1-r0?arch=aarch64&distroversion=v3.21&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/sudo@1.9.17_p1-r0%3Farch=aarch64&distroversion=v3.21&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/955663?format=api", "purl": "pkg:apk/alpine/sudo@1.9.17_p1-r0?arch=armhf&distroversion=v3.21&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/sudo@1.9.17_p1-r0%3Farch=armhf&distroversion=v3.21&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/955664?format=api", "purl": "pkg:apk/alpine/sudo@1.9.17_p1-r0?arch=armv7&distroversion=v3.21&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/sudo@1.9.17_p1-r0%3Farch=armv7&distroversion=v3.21&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/955665?format=api", "purl": "pkg:apk/alpine/sudo@1.9.17_p1-r0?arch=loongarch64&distroversion=v3.21&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/sudo@1.9.17_p1-r0%3Farch=loongarch64&distroversion=v3.21&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/955666?format=api", "purl": "pkg:apk/alpine/sudo@1.9.17_p1-r0?arch=ppc64le&distroversion=v3.21&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/sudo@1.9.17_p1-r0%3Farch=ppc64le&distroversion=v3.21&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/955667?format=api", "purl": "pkg:apk/alpine/sudo@1.9.17_p1-r0?arch=riscv64&distroversion=v3.21&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/sudo@1.9.17_p1-r0%3Farch=riscv64&distroversion=v3.21&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/955668?format=api", "purl": "pkg:apk/alpine/sudo@1.9.17_p1-r0?arch=s390x&distroversion=v3.21&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/sudo@1.9.17_p1-r0%3Farch=s390x&distroversion=v3.21&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/955669?format=api", "purl": "pkg:apk/alpine/sudo@1.9.17_p1-r0?arch=x86&distroversion=v3.21&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/sudo@1.9.17_p1-r0%3Farch=x86&distroversion=v3.21&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/955670?format=api", "purl": "pkg:apk/alpine/sudo@1.9.17_p1-r0?arch=x86_64&distroversion=v3.21&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/sudo@1.9.17_p1-r0%3Farch=x86_64&distroversion=v3.21&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/1031162?format=api", "purl": "pkg:apk/alpine/sudo@1.9.17_p1-r0?arch=aarch64&distroversion=v3.22&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/sudo@1.9.17_p1-r0%3Farch=aarch64&distroversion=v3.22&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/1031163?format=api", "purl": "pkg:apk/alpine/sudo@1.9.17_p1-r0?arch=armhf&distroversion=v3.22&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/sudo@1.9.17_p1-r0%3Farch=armhf&distroversion=v3.22&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/1031164?format=api", "purl": "pkg:apk/alpine/sudo@1.9.17_p1-r0?arch=armv7&distroversion=v3.22&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/sudo@1.9.17_p1-r0%3Farch=armv7&distroversion=v3.22&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/1031165?format=api", "purl": "pkg:apk/alpine/sudo@1.9.17_p1-r0?arch=loongarch64&distroversion=v3.22&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/sudo@1.9.17_p1-r0%3Farch=loongarch64&distroversion=v3.22&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/1031166?format=api", "purl": "pkg:apk/alpine/sudo@1.9.17_p1-r0?arch=ppc64le&distroversion=v3.22&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/sudo@1.9.17_p1-r0%3Farch=ppc64le&distroversion=v3.22&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/1031167?format=api", "purl": "pkg:apk/alpine/sudo@1.9.17_p1-r0?arch=riscv64&distroversion=v3.22&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/sudo@1.9.17_p1-r0%3Farch=riscv64&distroversion=v3.22&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/1031168?format=api", "purl": "pkg:apk/alpine/sudo@1.9.17_p1-r0?arch=s390x&distroversion=v3.22&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/sudo@1.9.17_p1-r0%3Farch=s390x&distroversion=v3.22&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/1031169?format=api", "purl": "pkg:apk/alpine/sudo@1.9.17_p1-r0?arch=x86&distroversion=v3.22&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/sudo@1.9.17_p1-r0%3Farch=x86&distroversion=v3.22&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/1031170?format=api", "purl": "pkg:apk/alpine/sudo@1.9.17_p1-r0?arch=x86_64&distroversion=v3.22&reponame=community", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:apk/alpine/sudo@1.9.17_p1-r0%3Farch=x86_64&distroversion=v3.22&reponame=community" }, { "url": "http://public2.vulnerablecode.io/api/packages/940182?format=api", "purl": "pkg:deb/debian/sudo@0?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/sudo@0%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/940179?format=api", "purl": "pkg:deb/debian/sudo@1.9.5p2-3%2Bdeb11u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-e9ra-cfnz-m3hg" }, { "vulnerability": "VCID-m9xh-9ac2-eycq" }, { "vulnerability": "VCID-pwmy-f5qe-s3d1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/sudo@1.9.5p2-3%252Bdeb11u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/940177?format=api", "purl": "pkg:deb/debian/sudo@1.9.13p3-1%2Bdeb12u3?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-m9xh-9ac2-eycq" }, { "vulnerability": "VCID-pwmy-f5qe-s3d1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/sudo@1.9.13p3-1%252Bdeb12u3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/940219?format=api", "purl": "pkg:deb/debian/sudo@1.9.16p2-3?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/sudo@1.9.16p2-3%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/940181?format=api", "purl": "pkg:deb/debian/sudo@1.9.16p2-3%2Bdeb13u1?distro=trixie", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-pwmy-f5qe-s3d1" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/sudo@1.9.16p2-3%252Bdeb13u1%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/940180?format=api", "purl": "pkg:deb/debian/sudo@1.9.17p2-5?distro=trixie", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:deb/debian/sudo@1.9.17p2-5%3Fdistro=trixie" }, { "url": "http://public2.vulnerablecode.io/api/packages/74531?format=api", "purl": "pkg:ebuild/app-admin/sudo@1.9.17_p1", "is_vulnerable": false, "affected_by_vulnerabilities": [], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:ebuild/app-admin/sudo@1.9.17_p1" } ], "affected_packages": [ { "url": "http://public2.vulnerablecode.io/api/packages/89857?format=api", "purl": "pkg:rpm/redhat/sudo@1.9.15-8.p5.el10_0?arch=2", "is_vulnerable": true, "affected_by_vulnerabilities": [ { "vulnerability": "VCID-ngg5-bqw7-bbc4" }, { "vulnerability": "VCID-ztsc-935d-dbga" } ], "resource_url": "http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/sudo@1.9.15-8.p5.el10_0%3Farch=2" } ], "references": [ { "reference_url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-32463.json", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-32463.json" }, { "reference_url": "https://api.first.org/data/v1/epss?cve=CVE-2025-32463", "reference_id": "", "reference_type": "", "scores": [ { "value": "0.38489", "scoring_system": "epss", "scoring_elements": "0.9725", "published_at": "2026-04-18T12:55:00Z" }, { "value": "0.38489", "scoring_system": "epss", "scoring_elements": "0.97248", "published_at": "2026-04-16T12:55:00Z" }, { "value": "0.38489", "scoring_system": "epss", "scoring_elements": "0.9724", "published_at": "2026-04-13T12:55:00Z" }, { "value": "0.38489", "scoring_system": "epss", "scoring_elements": "0.97239", "published_at": "2026-04-12T12:55:00Z" }, { "value": "0.38489", "scoring_system": "epss", "scoring_elements": "0.97238", "published_at": "2026-04-11T12:55:00Z" }, { "value": "0.38489", "scoring_system": "epss", "scoring_elements": "0.97235", "published_at": "2026-04-09T12:55:00Z" }, { "value": "0.38489", "scoring_system": "epss", "scoring_elements": "0.97234", "published_at": "2026-04-08T12:55:00Z" }, { "value": "0.38489", "scoring_system": "epss", "scoring_elements": "0.97223", "published_at": "2026-04-04T12:55:00Z" }, { "value": "0.38489", "scoring_system": "epss", "scoring_elements": "0.97224", "published_at": "2026-04-07T12:55:00Z" }, { "value": "0.38489", "scoring_system": "epss", "scoring_elements": "0.97218", "published_at": "2026-04-02T12:55:00Z" }, { "value": "0.38489", "scoring_system": "epss", "scoring_elements": "0.97253", "published_at": "2026-04-24T12:55:00Z" }, { "value": "0.44456", "scoring_system": "epss", "scoring_elements": "0.97571", "published_at": "2026-04-26T12:55:00Z" }, { "value": "0.44456", "scoring_system": "epss", "scoring_elements": "0.97575", "published_at": "2026-04-29T12:55:00Z" }, { "value": "0.44456", "scoring_system": "epss", "scoring_elements": "0.97582", "published_at": "2026-05-05T12:55:00Z" }, { "value": "0.44456", "scoring_system": "epss", "scoring_elements": "0.97587", "published_at": "2026-05-07T12:55:00Z" }, { "value": "0.46965", "scoring_system": "epss", "scoring_elements": "0.97696", "published_at": "2026-05-11T12:55:00Z" }, { "value": "0.46965", "scoring_system": "epss", "scoring_elements": "0.97701", "published_at": "2026-05-12T12:55:00Z" }, { "value": "0.57345", "scoring_system": "epss", "scoring_elements": "0.98172", "published_at": "2026-05-14T12:55:00Z" } ], "url": "https://api.first.org/data/v1/epss?cve=CVE-2025-32463" }, { "reference_url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml", "reference_id": "", "reference_type": "", "scores": [ { "value": "7.8", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H" } ], "url": "https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml" }, { "reference_url": "https://bugzilla.redhat.com/show_bug.cgi?id=2374693", "reference_id": "2374693", "reference_type": "", "scores": [], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2374693" }, { "reference_url": "https://www.openwall.com/lists/oss-security/2025/06/30/3", "reference_id": "3", "reference_type": "", "scores": [ { "value": "9.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-09-27T03:55:22Z/" } ], "url": "https://www.openwall.com/lists/oss-security/2025/06/30/3" }, { "reference_url": "https://www.sudo.ws/security/advisories/", "reference_id": "advisories", "reference_type": "", "scores": [ { "value": "9.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-09-27T03:55:22Z/" } ], "url": "https://www.sudo.ws/security/advisories/" }, { "reference_url": "https://www.sudo.ws/releases/changelog/", "reference_id": "changelog", "reference_type": "", "scores": [ { "value": "9.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-09-27T03:55:22Z/" } ], "url": "https://www.sudo.ws/releases/changelog/" }, { "reference_url": "https://www.sudo.ws/security/advisories/chroot_bug/", "reference_id": "chroot_bug", "reference_type": "", "scores": [ { "value": "9.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-09-27T03:55:22Z/" } ], "url": "https://www.sudo.ws/security/advisories/chroot_bug/" }, { "reference_url": "https://access.redhat.com/security/cve/cve-2025-32463", "reference_id": "cve-2025-32463", "reference_type": "", "scores": [ { "value": "9.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-09-27T03:55:22Z/" } ], "url": "https://access.redhat.com/security/cve/cve-2025-32463" }, { "reference_url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/local/52352.txt", "reference_id": "CVE-2025-32463", "reference_type": "exploit", "scores": [], "url": "https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/local/52352.txt" }, { "reference_url": "https://security-tracker.debian.org/tracker/CVE-2025-32463", "reference_id": "CVE-2025-32463", "reference_type": "", "scores": [ { "value": "9.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-09-27T03:55:22Z/" } ], "url": "https://security-tracker.debian.org/tracker/CVE-2025-32463" }, { "reference_url": "https://www.vicarius.io/vsociety/posts/cve-2025-32463-detect-sudo-vulnerability", "reference_id": "cve-2025-32463-detect-sudo-vulnerability", "reference_type": "", "scores": [ { "value": "9.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-09-27T03:55:22Z/" } ], "url": "https://www.vicarius.io/vsociety/posts/cve-2025-32463-detect-sudo-vulnerability" }, { "reference_url": "https://explore.alas.aws.amazon.com/CVE-2025-32463.html", "reference_id": "CVE-2025-32463.html", "reference_type": "", "scores": [ { "value": "9.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-09-27T03:55:22Z/" } ], "url": "https://explore.alas.aws.amazon.com/CVE-2025-32463.html" }, { "reference_url": "https://www.suse.com/security/cve/CVE-2025-32463.html", "reference_id": "CVE-2025-32463.html", "reference_type": "", "scores": [ { "value": "9.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-09-27T03:55:22Z/" } ], "url": "https://www.suse.com/security/cve/CVE-2025-32463.html" }, { "reference_url": "https://www.vicarius.io/vsociety/posts/cve-2025-32463-mitigate-sudo-vulnerability", "reference_id": "cve-2025-32463-mitigate-sudo-vulnerability", "reference_type": "", "scores": [ { "value": "9.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-09-27T03:55:22Z/" } ], "url": "https://www.vicarius.io/vsociety/posts/cve-2025-32463-mitigate-sudo-vulnerability" }, { "reference_url": "https://security.gentoo.org/glsa/202507-01", "reference_id": "GLSA-202507-01", "reference_type": "", "scores": [], "url": "https://security.gentoo.org/glsa/202507-01" }, { "reference_url": "https://access.redhat.com/errata/RHSA-2025:11537", "reference_id": "RHSA-2025:11537", "reference_type": "", "scores": [], "url": "https://access.redhat.com/errata/RHSA-2025:11537" }, { "reference_url": "https://bugs.gentoo.org/show_bug.cgi?id=CVE-2025-32463", "reference_id": "show_bug.cgi?id=CVE-2025-32463", "reference_type": "", "scores": [ { "value": "9.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-09-27T03:55:22Z/" } ], "url": "https://bugs.gentoo.org/show_bug.cgi?id=CVE-2025-32463" }, { "reference_url": "https://www.secpod.com/blog/sudo-lpe-vulnerabilities-resolved-what-you-need-to-know-about-cve-2025-32462-and-cve-2025-32463/", "reference_id": "sudo-lpe-vulnerabilities-resolved-what-you-need-to-know-about-cve-2025-32462-and-cve-2025-32463", "reference_type": "", "scores": [ { "value": "9.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-09-27T03:55:22Z/" } ], "url": "https://www.secpod.com/blog/sudo-lpe-vulnerabilities-resolved-what-you-need-to-know-about-cve-2025-32462-and-cve-2025-32463/" }, { "reference_url": "https://www.suse.com/support/update/announcement/2025/suse-su-202502177-1/", "reference_id": "suse-su-202502177-1", "reference_type": "", "scores": [ { "value": "9.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-09-27T03:55:22Z/" } ], "url": "https://www.suse.com/support/update/announcement/2025/suse-su-202502177-1/" }, { "reference_url": "https://ubuntu.com/security/notices/USN-7604-1", "reference_id": "USN-7604-1", "reference_type": "", "scores": [ { "value": "9.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-09-27T03:55:22Z/" } ], "url": "https://ubuntu.com/security/notices/USN-7604-1" }, { "reference_url": "https://usn.ubuntu.com/7604-1/", "reference_id": "USN-7604-1", "reference_type": "", "scores": [], "url": "https://usn.ubuntu.com/7604-1/" }, { "reference_url": "https://www.stratascale.com/vulnerability-alert-CVE-2025-32463-sudo-chroot", "reference_id": "vulnerability-alert-CVE-2025-32463-sudo-chroot", "reference_type": "", "scores": [ { "value": "9.3", "scoring_system": "cvssv3.1", "scoring_elements": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H" }, { "value": "Attend", "scoring_system": "ssvc", "scoring_elements": "SSVCv2/E:A/A:N/T:T/P:M/B:A/M:M/D:A/2025-09-27T03:55:22Z/" } ], "url": "https://www.stratascale.com/vulnerability-alert-CVE-2025-32463-sudo-chroot" } ], "weaknesses": [ { "cwe_id": 427, "name": "Uncontrolled Search Path Element", "description": "The product uses a fixed or controlled search path to find resources, but one or more locations in that path can be under the control of unintended actors." }, { "cwe_id": 829, "name": "Inclusion of Functionality from Untrusted Control Sphere", "description": "The product imports, requires, or includes executable functionality (such as a library) from a source that is outside of the intended control sphere." } ], "exploits": [ { "date_added": "2025-07-08", "description": "Sudo chroot 1.9.17 - Local Privilege Escalation", "required_action": null, "due_date": null, "notes": null, "known_ransomware_campaign_use": false, "source_date_published": "2025-07-08", "exploit_type": "local", "platform": "linux", "source_date_updated": "2025-07-08", "data_source": "Exploit-DB", "source_url": "" }, { "date_added": null, "description": "Sudo before version 1.19.17p1 allows user to use `chroot` option, when\n executing command. The option is intended to run a command with\n user-selected root directory (if sudoers file allow it). Change in version\n 1.9.14 allows resolving paths via `chroot` using user-specified root\n directory when sudoers is still evaluating.\n This allows the attacker to trick Sudo into loading arbitrary shared object,\n thus resulting in a privilege escalation.", "required_action": null, "due_date": null, "notes": "Stability:\n - crash-safe\nReliability:\n - repeatable-session\nSideEffects:\n - artifacts-on-disk\n - ioc-in-logs\n", "known_ransomware_campaign_use": false, "source_date_published": "2025-06-30", "exploit_type": null, "platform": "Linux", "source_date_updated": null, "data_source": "Metasploit", "source_url": "https://github.com/rapid7/metasploit-framework/tree/master/modules/exploits/linux/local/sudo_chroot_cve_2025_32463.rb" }, { "date_added": "2025-09-29", "description": "Sudo contains an inclusion of functionality from untrusted control sphere vulnerability. This vulnerability could allow local attacker to leverage sudo’s -R (--chroot) option to run arbitrary commands as root, even if they are not listed in the sudoers file.", "required_action": "Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.", "due_date": "2025-10-20", "notes": "This vulnerability could affect an open-source component, third-party library, protocol, or proprietary implementation that could be used by different products. For more information, please see: https://www.sudo.ws/security/advisories/chroot_bug/ ; https://nvd.nist.gov/vuln/detail/CVE-2025-32463", "known_ransomware_campaign_use": false, "source_date_published": null, "exploit_type": null, "platform": null, "source_date_updated": null, "data_source": "KEV", "source_url": null } ], "severity_range_score": "7.8 - 9.3", "exploitability": "2.0", "weighted_severity": "8.4", "risk_score": 10.0, "resource_url": "http://public2.vulnerablecode.io/vulnerabilities/VCID-ztsc-935d-dbga" }