CVE-2021-4034
policykit-1 - security update
描述
A local privilege escalation vulnerability was found on polkit's pkexec utility. The pkexec application is a setuid tool designed to allow unprivileged users to run commands as privileged users according predefined policies. The current version of pkexec doesn't handle the calling parameters count correctly and ends trying to execute environment variables as commands. An attacker can leverage this by crafting environment variables in such a way it'll induce pkexec to execute arbitrary code. When successfully executed the attack can cause a local privilege escalation given unprivileged users administrative rights on the target machine.
如何修補 CVE-2021-4034
要修補 CVE-2021-4034,請將受影響套件升級到下列已修補版本。
- —升級至 0.105-31+deb11u1 或更新版本
- —升級至 0.105-18+deb9u2 或更新版本
- —升級至 0.105-25+deb10u1 或更新版本
CVE-2021-4034 正在被利用嗎?
是 — CVE-2021-4034 已列入 CISA Known Exploited Vulnerabilities (KEV) 清單,代表正在被實際利用,請立即修補。
受影響套件(3)
- from 0, < 0.105-31+deb11u1
- from 0, < 0.105-18+deb9u2
- from 0, < 0.105-25+deb10u1
CVSS 分數
| 來源 | 版本 | 嚴重程度 | 向量 |
|---|---|---|---|
| osv | CVSS 3.1 | HIGH7.8 | CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |