PwnKit Vulnerability

Pinky
January 26, 2022

Share This Post

PwnKit Vulnerability

Researches at Qualys have discovered a local privilege escalation vulnerability in all distributions of Linux. This vulnerability appears to be trivial to exploit, though it does require some level of “local” access (could potentially be used with SSH or other remote-control methods) for execution.

Proof of Concept exploits have been developed and released. Exploitation is likely at this point. Patches have been released and should be applied.

Qualys Report: https://blog.qualys.com/vulnerabilities-threat-research/2022/01/25/pwnkit-local-privilege-escalation-vulnerability-discovered-in-polkits-pkexec-cve-2021-4034

Reach out to our incident response team for help

linux, privesc, vulnerability

More To Explore

Information Security News – 7/21/2025

Google Gemini Flaw Hijacks Email Summaries for Phishing Article Link: https://www.bleepingcomputer.com/news/security/google-gemini-flaw-hijacks-email-summaries-for-phishing/ Hackers Exploit a Blind Spot Hiding Malware Inside DNS Records Article Link: https://arstechnica.com/security/2025/07/hackers-exploit-a-blind-spot-by-hiding-malware-inside-dns-records/

Marcus Cylar July 23, 2025

Bleeding Edge or Just Bleeding? CitrixBleed is Back

Citrix is back with vulnerability news no one wanted. CitrixBleed2 is affecting Citrix NetScaler ADC and Gateway devices between versions 14.1 and 47.46. Exploitation of

Brad Nigh July 7, 2025

PwnKit Vulnerability

Share This Post

More To Explore

Information Security News – 7/21/2025

Bleeding Edge or Just Bleeding? CitrixBleed is Back

Do You Want to Shore Up Your Defenses?

We're opening our first round of threat hunting engagements to 100 organizations. Sign up or join the wait list here.

Follow Us:

Privacy Policy

© 2025 FRSecure LLC