CVE-2021-4034
policykit-1 - security update
Description
A local privilege escalation vulnerability was found on polkit's pkexec utility. The pkexec application is a setuid tool designed to allow unprivileged users to run commands as privileged users according predefined policies. The current version of pkexec doesn't handle the calling parameters count correctly and ends trying to execute environment variables as commands. An attacker can leverage this by crafting environment variables in such a way it'll induce pkexec to execute arbitrary code. When successfully executed the attack can cause a local privilege escalation given unprivileged users administrative rights on the target machine.
How to fix CVE-2021-4034
To remediate CVE-2021-4034, upgrade the affected package to a fixed version below.
- —upgrade to 0.105-31+deb11u1 or later
- —upgrade to 0.105-18+deb9u2 or later
- —upgrade to 0.105-25+deb10u1 or later
Is CVE-2021-4034 being exploited?
Yes — CVE-2021-4034 is on the CISA Known Exploited Vulnerabilities (KEV) catalog. Patch immediately.
Affected packages (3)
- from 0, < 0.105-31+deb11u1
- from 0, < 0.105-18+deb9u2
- from 0, < 0.105-25+deb10u1
CVSS scores
| Source | Version | Severity | Vector |
|---|---|---|---|
| osv | CVSS 3.1 | HIGH7.8 | CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |