CVE-2021-3560
- Reference to the description:
- Description:
- It was found that polkit could be tricked into bypassing the credential checks for D-Bus requests, elevating the privileges of the requestor to the root user. This flaw could be used by an unprivileged local attacker to, for example, create a new local administrator. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.
- Last updated date:
- 06/27/2024
Reports
ACTIVELY EXPLOITED
- Type:
- exploitation
- Confidence:
- HIGH
- Date of publishing:
- 05/12/2023
- Reference url to background
https://www.cisa.gov/known-exploited-vulnerabilities-catalog
- Type:
- exploit
- Confidence:
- HIGH
- Date of publishing:
- 06/11/2021
- Reference url to background
- Type:
- exploit
- Confidence:
- HIGH
- Date of publishing:
- 06/11/2021
- Reference url to background
- Type:
- exploit
- Confidence:
- HIGH
- Date of publishing:
- 06/12/2021
- Reference url to background
- Type:
- exploit
- Confidence:
- HIGH
- Date of publishing:
- 06/14/2021
- Reference url to background
https://github.com/secnigma/CVE-2021-3560-Polkit-Privilege-Esclation
- Type:
- exploit
- Confidence:
- HIGH
- Date of publishing:
- 06/19/2021
- Reference url to background
- Type:
- exploit
- Confidence:
- HIGH
- Date of publishing:
- 06/29/2021
- Reference url to background
- Type:
- exploit
- Confidence:
- HIGH
- Date of publishing:
- 07/30/2021
- Reference url to background
- Type:
- exploit
- Confidence:
- HIGH
- Date of publishing:
- 08/27/2021
- Type:
- exploit
- Confidence:
- HIGH
- Date of publishing:
- 01/31/2022
- Reference url to background
- Type:
- exploit
- Confidence:
- HIGH
- Date of publishing:
- 02/02/2022
- Reference url to background
- Type:
- exploit
- Confidence:
- HIGH
- Date of publishing:
- 02/02/2022
- Reference url to background
- Type:
- exploit
- Confidence:
- HIGH
- Date of publishing:
- 02/13/2022
- Reference url to background
- Type:
- exploit
- Confidence:
- HIGH
- Date of publishing:
- 02/28/2022
- Reference url to background
https://github.blog/2021-06-10-privilege-escalation-polkit-root-on-linux-with-bug/
- Type:
- exploit
- Confidence:
- HIGH
- Date of publishing:
- 03/08/2022
- Reference url to background
- Type:
- exploit
- Confidence:
- HIGH
- Date of publishing:
- 04/29/2022
- Reference url to background
https://github.com/RicterZ/CVE-2021-3560-Authentication-Agent
- Type:
- exploit
- Confidence:
- HIGH
- Date of publishing:
- 04/30/2022
- Reference url to background
- Type:
- exploit
- Confidence:
- HIGH
- Date of publishing:
- 05/02/2022
- Reference url to background