automatic module_metadata_base.json update

Author: jenkins-metasploit

db/modules_metadata_base.json

@@ -92491,6 +92491,58 @@
     "needs_cleanup": true,
     "actions": []
   },
+  "exploit_linux/local/sudo_chroot_cve_2025_32463": {
+    "name": "Sudo Chroot 1.9.17 Privilege Escalation",
+    "fullname": "exploit/linux/local/sudo_chroot_cve_2025_32463",
+    "aliases": [],
+    "rank": 300,
+    "disclosure_date": "2025-06-30",
+    "type": "exploit",
+    "author": [
+      "msutovsky-r7",
+      "Stratascale",
+      "Rich Mirch"
+    ],
+    "description": "Sudo before version 1.19.17p1 allows user to use `chroot` option, when\n          executing command. The option is intended to run a command with\n          user-selected root directory (if sudoers file allow it). Change in version\n          1.9.14 allows resolving paths via `chroot` using user-specified root\n          directory when sudoers is still evaluating.\n          This allows the attacker to trick Sudo into loading arbitrary shared object,\n          thus resulting in a privilege escalation.",
+    "references": [
+      "EDB-52352",
+      "URL-https://www.helpnetsecurity.com/2025/07/01/sudo-local-privilege-escalation-vulnerabilities-fixed-cve-2025-32462-cve-2025-32463/",
+      "CVE-2025-32463"
+    ],
+    "platform": "Linux",
+    "arch": "cmd",
+    "rport": null,
+    "autofilter_ports": [],
+    "autofilter_services": [],
+    "targets": [
+      "Auto"
+    ],
+    "mod_time": "2025-08-27 17:58:11 +0000",
+    "path": "/modules/exploits/linux/local/sudo_chroot_cve_2025_32463.rb",
+    "is_install_path": true,
+    "ref_name": "linux/local/sudo_chroot_cve_2025_32463",
+    "check": true,
+    "post_auth": false,
+    "default_credential": false,
+    "notes": {
+      "Stability": [
+        "crash-safe"
+      ],
+      "Reliability": [
+        "repeatable-session"
+      ],
+      "SideEffects": [
+        "artifacts-on-disk",
+        "ioc-in-logs"
+      ]
+    },
+    "session_types": [
+      "shell",
+      "meterpreter"
+    ],
+    "needs_cleanup": true,
+    "actions": []
+  },
   "exploit_linux/local/sudoedit_bypass_priv_esc": {
     "name": "Sudoedit Extra Arguments Priv Esc",
     "fullname": "exploit/linux/local/sudoedit_bypass_priv_esc",