CVE-2021-3560

It was found that polkit could be tricked into bypassing the credential checks for D-Bus requests, elevating the privileges of the requestor to the...

Basic Information

CVE State: PUBLISHED
Reserved Date: May 20, 2021
Published Date: February 16, 2022
Last Updated: February 13, 2025
Vendor: n/a
Product: polkit
Description: It was found that polkit could be tricked into bypassing the credential checks for D-Bus requests, elevating the privileges of the requestor to the root user. This flaw could be used by an unprivileged local attacker to, for example, create a new local administrator. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.

CVSS Scores

CVSS v3.1

7.8 - HIGH

Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

SSVC Information

Exploitation: active
Technical Impact: total

Exploit Status

Exploited in the Wild: Yes (added 2023-05-12 00:00:00 UTC) Source
Proof of Concept Available: Yes (added 2024-03-24 11:37:18 UTC) Source

References

https://bugzilla.redhat.com/show_bug.cgi?id=1961710 https://github.blog/2021-06-10-privilege-escalation-polkit-root-on-linux-with-bug/ http://packetstormsecurity.com/files/172836/polkit-Authentication-Bypass.html http://packetstormsecurity.com/files/172846/Facebook-Fizz-Denial-Of-Service.html

Known Exploited Vulnerability Information

Source	Added Date
CISA	2023-05-12 00:00:00 UTC

Scanner Integrations

Scanner	URL	Date Detected
Metasploit	https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/linux/local/polkit_dbus_auth_bypass.rb	2025-04-29 11:01:17 UTC

Potential Proof of Concepts

Warning: These PoCs have not been tested and could contain malware. Use at your own risk.

polkit_dbus_auth_bypass

Type: metasploit • Created: Unknown

Metasploit module for CVE-2021-3560

Kyyomaa/CVE-2021-3560-EXPLOIT

Type: github • Created: 2024-03-24 11:37:18 UTC • Stars: 2

Part of my cybersecurity thesis consists in exploring and exploiting this vulnerability.

LucasPDiniz/CVE-2021-3560

Type: github • Created: 2023-11-08 05:11:56 UTC • Stars: 2

Exploitation of the CVE-2021-3560 polkit vulnerability

UNICORDev/exploit-CVE-2021-3560

Type: github • Created: 2022-05-02 23:56:31 UTC • Stars: 8

Exploit for CVE-2021-3560 (Polkit) - Local Privilege Escalation

WinMin/CVE-2021-3560

Type: github • Created: 2022-04-30 05:53:45 UTC • Stars: 24

PolicyKit CVE-2021-3560 Exploitation (Authentication Agent)

RicterZ/CVE-2021-3560-Authentication-Agent

Type: github • Created: 2022-04-29 18:57:30 UTC • Stars: 116

PolicyKit CVE-2021-3560 Exploit (Authentication Agent)

f4T1H21/CVE-2021-3560-Polkit-DBus

Type: github • Created: 2022-02-13 10:12:51 UTC • Stars: 5

f4T1H's PoC script for CVE-2021-3560 Polkit D-Bus Privilege Escalation

NeonWhiteRabbit/CVE-2021-3560

Type: github • Created: 2022-02-02 17:08:24 UTC • Stars: 4

Polkit Exploit (CVE-2021-3560), no download capabilty? Copy and paste it!

chenaotian/CVE-2021-3560

Type: github • Created: 2022-01-31 09:02:23 UTC • Stars: 9

CVE-2021-3560 analysis

0dayNinja/CVE-2021-3560

Type: github • Created: 2021-07-30 11:41:34 UTC • Stars: 10

Polkit D-Bus Authentication Bypass Exploit

BizarreLove/CVE-2021-3560

Type: github • Created: 2021-07-28 06:05:46 UTC • Stars: 2

NYCY_homework_&_meeting

cpu0x00/CVE-2021-3560

Type: github • Created: 2021-07-02 10:03:26 UTC • Stars: 2

ubuntu new PrivEsc race condition vulnerability

AssassinUKG/Polkit-CVE-2021-3560

Type: github • Created: 2021-06-29 20:47:16 UTC • Stars: 24

secnigma/CVE-2021-3560-Polkit-Privilege-Esclation

Type: github • Created: 2021-06-14 20:08:20 UTC • Stars: 118

hakivvi/CVE-2021-3560

Type: github • Created: 2021-06-12 05:22:35 UTC • Stars: 38

a reliable C based exploit and writeup for CVE-2021-3560.