NOMISEC-asepsaepdin/CVE-2021-3560

NOMISEC WORKING POC

Exploit for CVE-2021-3560 - polkit - Privilege Escalation

AI Analysis

This repository contains a functional exploit for CVE-2021-3560, a local privilege escalation vulnerability in Polkit. The exploit leverages a race condition in Polkit's D-Bus request handling to create a new user with root privileges.

Attack Type

LPE

Complexity

moderate

Reliability

racy

MITRE ATT&CK

T1068 - Exploitation for Privilege Escalation

Loading exploit code...

Download ZIP Password: eip

Source

Platform Nomisec

Type local

Files 2

https://github.com/asepsaepdin/CVE-2021-3560

Stars 0

Forks 1

Last Push Sep 05, 2023

Authors

asepsaepdin UNICORDev (NicPWNs & Dev-Yeoj)

Vulnerability

CVE-2021-3560

polkit - Privilege Escalation

HIGH KEV

CVSS 7.8