CVE-2021-4034 - Red Hat Polkit Out-of-Bounds Read and Write Vulnerability
Project:Red Hat
Product:Polkit
Date Added:2022-06-27Due Date:2022-07-18
Vulnerability Name
Red Hat Polkit Out-of-Bounds Read and Write Vulnerability
Description
The Red Hat polkit pkexec utility contains an out-of-bounds read and write vulnerability that allows for privilege escalation with administrative rights.
Known To Be Used in Ransomware Campaigns?
Unknown
Action
Apply updates per vendor instructions.
Additional Notes
https://nvd.nist.gov/vuln/detail/CVE-2021-4034
Related News Articles
Linux systems targeted with stealthy “Perfctl” cryptomining malwareOctober 7, 2024
Linux malware “perfctl” behind years-long cryptomining campaignOctober 3, 2024