The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has recently added a significant vulnerability affecting the Sudo command-line utility used in Linux and Unix systems to its Known Exploited Vulnerabilities (KEV) catalog. This particular vulnerability, designated as CVE-2025-32463 and rated with a CVSS score of 9.3, affects versions of Sudo prior to 1.9.17p1. It was initially disclosed by Rich Mirch from Stratascale in July 2025.
CISA described the vulnerability as an inclusion of functionality from an untrusted control sphere, which could enable a local attacker to exploit the Sudo command’s -R (–chroot) option. This would allow them to execute arbitrary commands as root, regardless of their listing in the sudoers file.
At present, how this vulnerability is being exploited in real-world scenarios remains unclear, and it is unknown who the perpetrators behind such attacks might be. In addition to the Sudo issue, CISA also added four more vulnerabilities to the KEV catalog:
Organizations relying on affected products are advised by CISA to implement necessary mitigations by October 20, 2025, to safeguard their networks.
ChicagoVPS is your gateway to unparalleled hosting solutions. Our state-of-the-art datacenters and powerful network ensures lightning-fast speeds and uninterrupted connectivity for your websites and applications. Whether you’re a startup looking for scalable resources or an enterprise in need of enterprise-grade hosting, our range of plans and customizable solutions guarantee a perfect fit. Trust in ChicagoVPS to deliver excellence, combining unmatched reliability and top-tier support.
For Inquiries or to receive a personalized quote, please reach out to us through our contact form here or email us at sales@chicagovps.net.
