Home

CVE-2021-4034

Description

A local privilege escalation vulnerability was found on polkits pkexec utility. The pkexec application is a setuid tool designed to allow unprivileged users to run commands as privileged users according predefined policies. The current version of pkexec doesnt handle the calling parameters count correctly and ends trying to execute environment variables as commands. An attacker can leverage this by crafting environment variables in such a way itll induce pkexec to execute arbitrary code. When successfully executed the attack can cause a local privilege escalation given unprivileged users administrative rights on the target machine.

Risk Information

Base Score
7.8
MODERATE
Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
87.261

Associated Vulnerability

VulnerabilityOS Platform
Multiple Vulnerabilities are affected in IBM Security Guardium 10.5Windows
Multiple Vulnerabilities are affected in IBM Security Guardium 10.6Windows
Multiple Vulnerabilities are affected in IBM Security Guardium 11.1Windows
Multiple Vulnerabilities are affected in IBM Security Guardium 11.2Windows
Multiple Vulnerabilities are affected in IBM Security Guardium 11.3Windows
Multiple Vulnerabilities are affected in IBM Security Guardium 11.4Windows
Multiple Vulnerabilities are affected in IBM Security Guardium 11.0Windows
policykit-1 security update(DSA-5059-1) policykit-1_0.105-25+deb10u1_i386.debLinux
policykit-1 security update(DSA-5059-1) policykit-1_0.105-25+deb10u1_amd64.debLinux
policykit-1 security update(DSA-5059-1) policykit-1_0.105-31+deb11u1_amd64.debLinux
SUSE-SU-2022:0189-1(SUSE Linux Enterprise Server 12-SP5 ) libpolkit0-0.113-5.24.1.x86_64.rpmLinux
SUSE-SU-2022:0189-1(SUSE Linux Enterprise Server 12-SP5 ) libpolkit0-debuginfo-0.113-5.24.1.x86_64.rpmLinux
SUSE-SU-2022:0189-1(SUSE Linux Enterprise Server 12-SP5 ) polkit-0.113-5.24.1.x86_64.rpmLinux
SUSE-SU-2022:0189-1(SUSE Linux Enterprise Server 12-SP5 ) polkit-debuginfo-0.113-5.24.1.x86_64.rpmLinux
SUSE-SU-2022:0189-1(SUSE Linux Enterprise Server 12-SP5 ) polkit-debugsource-0.113-5.24.1.x86_64.rpmLinux
SUSE-SU-2022:0189-1(SUSE Linux Enterprise Server 12-SP5 ) typelib-1_0-Polkit-1_0-0.113-5.24.1.x86_64.rpmLinux
(RHSA-2022:0267) polkit security update polkit-0.115-13.el8_5.1.x86_64.rpmLinux
(RHSA-2022:0267) polkit security update polkit-debugsource-0.115-13.el8_5.1.i686.rpmLinux
(RHSA-2022:0267) polkit security update polkit-debugsource-0.115-13.el8_5.1.x86_64.rpmLinux
(RHSA-2022:0267) polkit security update polkit-devel-0.115-13.el8_5.1.i686.rpmLinux
(RHSA-2022:0267) polkit security update polkit-devel-0.115-13.el8_5.1.x86_64.rpmLinux
(RHSA-2022:0267) polkit security update polkit-docs-0.115-13.el8_5.1.noarch.rpmLinux
(RHSA-2022:0267) polkit security update polkit-libs-0.115-13.el8_5.1.i686.rpmLinux
(RHSA-2022:0267) polkit security update polkit-libs-0.115-13.el8_5.1.x86_64.rpmLinux
(RHSA-2022:0274) polkit security update polkit-0.112-26.el7_9.1.i686.rpmLinux
(RHSA-2022:0274) polkit security update polkit-0.112-26.el7_9.1.x86_64.rpmLinux
(RHSA-2022:0274) polkit security update polkit-devel-0.112-26.el7_9.1.i686.rpmLinux
(RHSA-2022:0274) polkit security update polkit-devel-0.112-26.el7_9.1.x86_64.rpmLinux
(RHSA-2022:0274) polkit security update polkit-docs-0.112-26.el7_9.1.noarch.rpmLinux
Polkit update (ELSA-2022-0274) polkit-0.112-26.0.1.el7_9.1.i686.rpmLinux
Polkit update (ELSA-2022-0274) polkit-0.112-26.0.1.el7_9.1.x86_64.rpmLinux
Polkit-devel update (ELSA-2022-0274) polkit-devel-0.112-26.0.1.el7_9.1.i686.rpmLinux
Polkit-devel update (ELSA-2022-0274) polkit-devel-0.112-26.0.1.el7_9.1.x86_64.rpmLinux
Polkit-docs update (ELSA-2022-0274) polkit-docs-0.112-26.0.1.el7_9.1.noarch.rpmLinux
framework for managing administrative policies and privileges (USN-5252-1) policykit-1_0.105-26ubuntu1.3_i386.debLinux
framework for managing administrative policies and privileges (USN-5252-1) policykit-1_0.105-26ubuntu1.3_amd64.debLinux
framework for managing administrative policies and privileges (USN-5252-1) policykit-1_0.105-31ubuntu0.2_i386.debLinux
framework for managing administrative policies and privileges (USN-5252-1) policykit-1_0.105-31ubuntu0.2_amd64.debLinux
framework for managing administrative policies and privileges (USN-5252-1) policykit-1_0.105-20ubuntu0.18.04.6_i386.debLinux
framework for managing administrative policies and privileges (USN-5252-1) policykit-1_0.105-20ubuntu0.18.04.6_amd64.debLinux
Polkit update (ELSA-2022-0267) polkit-0.115-13.0.1.el8_5.1.x86_64.rpmLinux
Polkit-devel update (ELSA-2022-0267) polkit-devel-0.115-13.0.1.el8_5.1.i686.rpmLinux
Polkit-devel update (ELSA-2022-0267) polkit-devel-0.115-13.0.1.el8_5.1.x86_64.rpmLinux
Polkit-docs update (ELSA-2022-0267) polkit-docs-0.115-13.0.1.el8_5.1.noarch.rpmLinux
Polkit-libs update (ELSA-2022-0267) polkit-libs-0.115-13.0.1.el8_5.1.i686.rpmLinux
Polkit-libs update (ELSA-2022-0267) polkit-libs-0.115-13.0.1.el8_5.1.x86_64.rpmLinux
Polkit update (ELSA-2022-1546) polkit-0.115-13.0.1.el8_5.2.x86_64.rpmLinux
Polkit-devel update (ELSA-2022-1546) polkit-devel-0.115-13.0.1.el8_5.2.i686.rpmLinux
Polkit-devel update (ELSA-2022-1546) polkit-devel-0.115-13.0.1.el8_5.2.x86_64.rpmLinux
Polkit-docs update (ELSA-2022-1546) polkit-docs-0.115-13.0.1.el8_5.2.noarch.rpmLinux
Polkit-libs update (ELSA-2022-1546) polkit-libs-0.115-13.0.1.el8_5.2.i686.rpmLinux
Polkit-libs update (ELSA-2022-1546) polkit-libs-0.115-13.0.1.el8_5.2.x86_64.rpmLinux
Kernel-uek-container update (ELSA-2022-9710) kernel-uek-container-5.4.17-2136.310.7.el8.x86_64.rpmLinux
Kernel-uek-container-debug update (ELSA-2022-9710) kernel-uek-container-debug-5.4.17-2136.310.7.el8.x86_64.rpmLinux
(RHSA-2022:0274)Important: security update polkit-debuginfo-0.112-26.el7_9.1.i686.rpmLinux
(RHSA-2022:0274)Important: security update polkit-debuginfo-0.112-26.el7_9.1.x86_64.rpmLinux
policykit-1 security update(DSA-5059-1) policykit-1_0.105-31+deb11u1_i386.debLinux
polkit Security Update (ALAS-2022-1745) polkit-0.112-26.amzn2.1.i686.rpmLinux
polkit Security Update (ALAS-2022-1745) polkit-0.112-26.amzn2.1.x86_64.rpmLinux
polkit Security Update (ALAS-2022-1745) polkit-docs-0.112-26.amzn2.1.noarch.rpmLinux
polkit Security Update (ALAS-2022-1745) polkit-devel-0.112-26.amzn2.1.x86_64.rpmLinux
polkit Security Update (ALAS2023-2023-026) polkit-0.117-10.amzn2023.0.3.x86_64.rpmLinux
polkit Security Update (ALAS2023-2023-026) polkit-devel-0.117-10.amzn2023.0.3.x86_64.rpmLinux
polkit Security Update (ALAS2023-2023-026) polkit-docs-0.117-10.amzn2023.0.3.noarch.rpmLinux
polkit Security Update (ALAS2023-2023-026) polkit-libs-0.117-10.amzn2023.0.3.x86_64.rpmLinux
Out-of-bounds Read Vulnerability (CVE-2021-4034)NCM

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234