Skip to main content

Polkit

10 CVEs product

Monthly

CVE-2026-4897 MEDIUM PATCH This Month

Polkit's polkit-agent-helper-1 setuid binary fails to bound input length on stdin, allowing local authenticated users to trigger out-of-memory conditions and deny system availability. An attacker with local login privileges can supply excessively long input to exhaust memory resources, causing a system-wide denial of service. No public exploit code or active exploitation has been confirmed at the time of analysis.

Denial Of Service Polkit Openshift Container Platform Enterprise Linux
NVD VulDB
CVSS 3.1
5.5
EPSS
0.0%
CVE-2019-6133 MEDIUM PATCH This Month

In PolicyKit (aka polkit) 0.115, the "start time" protection mechanism can be bypassed because fork() is not atomic, and therefore authorization decisions are improperly cached. Rated medium severity (CVSS 6.7).

Authentication Bypass Race Condition Polkit Debian Linux Enterprise Linux Desktop +6
NVD
CVSS 3.0
6.7
EPSS
0.4%
CVE-2018-19788 HIGH POC THREAT This Week

A flaw was found in PolicyKit (aka polkit) 0.115 that allows a user with a uid greater than INT_MAX to successfully execute any systemctl command. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Polkit Debian Linux Ubuntu Linux
NVD
CVSS 3.0
8.8
EPSS
11.5%
CVE-2018-1116 MEDIUM PATCH This Month

A flaw was found in polkit before version 0.116. Rated medium severity (CVSS 4.4), this vulnerability is low attack complexity.

Authentication Bypass Information Disclosure Debian Linux Ubuntu Linux Polkit
NVD
CVSS 3.1
4.4
EPSS
1.2%
CVE-2016-2568 HIGH This Week

pkexec, when used with --user nonpriv, allows local users to escape to the parent session via a crafted TIOCSTI ioctl call, which pushes characters to the terminal's input buffer. Rated high severity (CVSS 7.8). No vendor patch available.

Information Disclosure Polkit Enterprise Linux
NVD
CVSS 3.1
7.8
EPSS
0.1%
CVE-2015-4625 MEDIUM This Month

Integer overflow in the authentication_agent_new_cookie function in PolicyKit (aka polkit) before 0.113 allows local users to gain privileges by creating a large number of connections, which triggers. Rated medium severity (CVSS 4.6), this vulnerability is low attack complexity. No vendor patch available.

Buffer Overflow Fedora Opensuse Polkit
NVD
CVSS 2.0
4.6
EPSS
0.1%
CVE-2015-3256 MEDIUM This Month

PolicyKit (aka polkit) before 0.113 allows local users to cause a denial of service (memory corruption and polkitd daemon crash) and possibly gain privileges via unspecified vectors, related to. Rated medium severity (CVSS 4.6), this vulnerability is low attack complexity. No vendor patch available.

Denial Of Service Privilege Escalation Buffer Overflow Polkit Opensuse
NVD
CVSS 2.0
4.6
EPSS
0.1%
CVE-2015-3255 MEDIUM This Month

The polkit_backend_action_pool_init function in polkitbackend/polkitbackendactionpool.c in PolicyKit (aka polkit) before 0.113 might allow local users to gain privileges via duplicate action IDs in. Rated medium severity (CVSS 4.6), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Polkit
NVD
CVSS 2.0
4.6
EPSS
0.1%
CVE-2015-3218 LOW Monitor

The authentication_agent_new function in polkitbackend/polkitbackendinteractiveauthority.c in PolicyKit (aka polkit) before 0.113 allows local users to cause a denial of service (NULL pointer. Rated low severity (CVSS 2.1), this vulnerability is low attack complexity. No vendor patch available.

Denial Of Service Polkit
NVD
CVSS 2.0
2.1
EPSS
0.1%
CVE-2013-4288 HIGH PATCH This Week

Race condition in PolicyKit (aka polkit) allows local users to bypass intended PolicyKit restrictions and gain privileges by starting a setuid or pkexec process before the authorization check is. Rated high severity (CVSS 7.2), this vulnerability is low attack complexity.

Race Condition Authentication Bypass Opensuse Polkit Ubuntu Linux +1
NVD
CVSS 2.0
7.2
EPSS
0.0%
EPSS 0% CVSS 5.5
MEDIUM PATCH This Month

Polkit's polkit-agent-helper-1 setuid binary fails to bound input length on stdin, allowing local authenticated users to trigger out-of-memory conditions and deny system availability. An attacker with local login privileges can supply excessively long input to exhaust memory resources, causing a system-wide denial of service. No public exploit code or active exploitation has been confirmed at the time of analysis.

Denial Of Service Polkit Openshift Container Platform +1
NVD VulDB
EPSS 0% CVSS 6.7
MEDIUM PATCH This Month

In PolicyKit (aka polkit) 0.115, the "start time" protection mechanism can be bypassed because fork() is not atomic, and therefore authorization decisions are improperly cached. Rated medium severity (CVSS 6.7).

Authentication Bypass Race Condition Polkit +8
NVD
EPSS 11% CVSS 8.8
HIGH POC THREAT This Week

A flaw was found in PolicyKit (aka polkit) 0.115 that allows a user with a uid greater than INT_MAX to successfully execute any systemctl command. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Polkit Debian Linux +1
NVD
EPSS 1% CVSS 4.4
MEDIUM PATCH This Month

A flaw was found in polkit before version 0.116. Rated medium severity (CVSS 4.4), this vulnerability is low attack complexity.

Authentication Bypass Information Disclosure Debian Linux +2
NVD
EPSS 0% CVSS 7.8
HIGH This Week

pkexec, when used with --user nonpriv, allows local users to escape to the parent session via a crafted TIOCSTI ioctl call, which pushes characters to the terminal's input buffer. Rated high severity (CVSS 7.8). No vendor patch available.

Information Disclosure Polkit Enterprise Linux
NVD
EPSS 0% CVSS 4.6
MEDIUM This Month

Integer overflow in the authentication_agent_new_cookie function in PolicyKit (aka polkit) before 0.113 allows local users to gain privileges by creating a large number of connections, which triggers. Rated medium severity (CVSS 4.6), this vulnerability is low attack complexity. No vendor patch available.

Buffer Overflow Fedora Opensuse +1
NVD
EPSS 0% CVSS 4.6
MEDIUM This Month

PolicyKit (aka polkit) before 0.113 allows local users to cause a denial of service (memory corruption and polkitd daemon crash) and possibly gain privileges via unspecified vectors, related to. Rated medium severity (CVSS 4.6), this vulnerability is low attack complexity. No vendor patch available.

Denial Of Service Privilege Escalation Buffer Overflow +2
NVD
EPSS 0% CVSS 4.6
MEDIUM This Month

The polkit_backend_action_pool_init function in polkitbackend/polkitbackendactionpool.c in PolicyKit (aka polkit) before 0.113 might allow local users to gain privileges via duplicate action IDs in. Rated medium severity (CVSS 4.6), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Polkit
NVD
EPSS 0% CVSS 2.1
LOW Monitor

The authentication_agent_new function in polkitbackend/polkitbackendinteractiveauthority.c in PolicyKit (aka polkit) before 0.113 allows local users to cause a denial of service (NULL pointer. Rated low severity (CVSS 2.1), this vulnerability is low attack complexity. No vendor patch available.

Denial Of Service Polkit
NVD
EPSS 0% CVSS 7.2
HIGH PATCH This Week

Race condition in PolicyKit (aka polkit) allows local users to bypass intended PolicyKit restrictions and gain privileges by starting a setuid or pkexec process before the authorization check is. Rated high severity (CVSS 7.2), this vulnerability is low attack complexity.

Race Condition Authentication Bypass Opensuse +3
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy