https://blog.qife122.com/tags/docker%E7%8E%AF%E5%A2%83/ Recent content in Docker环境 on 办公AI智能小助手 Hugo zh-cn qife Mon, 29 Sep 2025 07:37:48 +0800 https://blog.qife122.com/p/cve-2025-32463%E6%BC%8F%E6%B4%9E%E5%AE%9E%E9%AA%8C%E7%8E%AF%E5%A2%83-%E6%8E%A2%E7%B4%A2sudo%E6%9D%83%E9%99%90%E6%8F%90%E5%8D%87%E9%A3%8E%E9%99%A9/ Mon, 29 Sep 2025 07:37:48 +0800 https://blog.qife122.com/p/cve-2025-32463%E6%BC%8F%E6%B4%9E%E5%AE%9E%E9%AA%8C%E7%8E%AF%E5%A2%83-%E6%8E%A2%E7%B4%A2sudo%E6%9D%83%E9%99%90%E6%8F%90%E5%8D%87%E9%A3%8E%E9%99%A9/ <h1 id="-cve-2025-32463-lab---简单探索权限提升风险">🐧 CVE-2025-32463-lab - 简单探索权限提升风险</h1> <h2 id="-立即下载">🔗 立即下载</h2> <p>[</p> <h2 id="-概述">📋 概述</h2> <p>本项目设置了一个Docker环境来复现和测试本地权限提升漏洞CVE-2025-32463。这意味着您可以在安全、受控的环境中试验此漏洞的工作原理，而不会影响您的实际系统。</p> https://blog.qife122.com/p/cve-2025-32463-docker%E5%AE%9E%E9%AA%8C%E5%AE%A4%E6%BC%94%E7%A4%BA%E6%BC%8F%E6%B4%9E%E5%88%A9%E7%94%A8%E4%B8%8E%E7%89%B9%E6%9D%83%E5%8D%87%E7%BA%A7%E5%AE%9E%E8%B7%B5/ Sat, 13 Sep 2025 10:23:13 +0800 https://blog.qife122.com/p/cve-2025-32463-docker%E5%AE%9E%E9%AA%8C%E5%AE%A4%E6%BC%94%E7%A4%BA%E6%BC%8F%E6%B4%9E%E5%88%A9%E7%94%A8%E4%B8%8E%E7%89%B9%E6%9D%83%E5%8D%87%E7%BA%A7%E5%AE%9E%E8%B7%B5/ <h1 id="cve-2025-32463-docker-lab-demo">CVE-2025-32463 Docker Lab Demo</h1> <p><img src="" alt="License"></p> <p>该项目创建一个Docker教育实验室，用于演示在Debian环境中对<strong>CVE-2025-32463</strong>漏洞的受控利用，模拟特权升级。</p> <h2 id="特性">特性</h2> <p>基于Debian Bullseye<br> 用户<code>pentester</code>，密码<code>pentester</code><br> 用户<code>root</code>，密码<code>root</code><br> 为<code>pentester</code>配置无密码<code>sudo</code>（<code>NOPASSWD:ALL</code>）<br> 演示脚本模拟利用过程，包含进度条和延迟</p>