Actively exploited vulnerability

CVE-2021-4034: Red Hat Polkit Out-of-Bounds Read and Write Vulnerability

The Red Hat polkit pkexec utility contains an out-of-bounds read and write vulnerability that allows for privilege escalation with administrative rights.

CISA KEV source 27 Jun 2022 added 18 Jul 2022 remediation due

Affected product

Red Hat · Polkit

Known ransomware use: Unknown

Required action

Follow the source advisory and validate exposure in your environment.

Apply updates per vendor instructions.

Related Yasna coverage

Recent reporting that mentions CVE-2021-4034.