Ctrl + K
/ news / CVE
CVEPublished 2022-02-161 article on news7 live referencesNVD data

CVE-2021-3560

Vulnerability data via CVEDB (Shodan)

CISA KEVKnown exploited in the wild.
CISA action: Red Hat Polkit contains an incorrect authorization vulnerability through the bypassing of credential checks for D-Bus requests, allowing for privilege escalation.
CVSS v3.1
7.8
HIGH
EPSS percentile
97
Exploit Prediction Scoring System · top 3% of all CVEs
Description

It was found that polkit could be tricked into bypassing the credential checks for D-Bus requests, elevating the privileges of the requestor to the root user. This flaw could be used by an unprivileged local attacker to, for example, create a new local administrator. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.

Timeline
Published 2022-02-16

External references

NVDMITREExploit-DBGitHub PoCSploitustrickest/cveVulnCheck

Search for exposed instances

Shodan + Censys queries derived from NVD's CPE data. The vuln tag catches assets Shodan has explicitly linked to this CVE; the product / banner fingerprints find exposed instances even when the vuln tag was never applied (which is common).

Shodan · vuln tag270 hosts
vuln:CVE-2021-3560
Hosts Shodan has explicitly fingerprinted as vulnerable.
Shodan · product
product:"Polkit Project Polkit"
All exposed Polkit Project Polkit instances — cross-reference with the CVE's affected-version range.
Shodan · banner/body mention
http.html:"Polkit"
HTTP body or banner mentions "Polkit" — catches deploys Shodan didn't identify as a product.
More intel sources (5)
Shodan report
vuln:CVE-2021-3560
Country / ASN / product breakdown for the vuln query.
Censys
vulnerabilities.cve_id: CVE-2021-3560
Censys host search filtered to this CVE id.
grep.app
CVE-2021-3560
Public source-code mentions — fast PoC discovery.
GitHub code
CVE-2021-3560
GitHub code search for direct mentions.
Google dork
"CVE-2021-3560" exploit -site:nvd.nist.gov
Write-ups and news, NVD excluded.

Known PoCs on GitHub (8)

CVE-2021-35608 repos
cipher387/osint_stuff_tool_collectionHTML
A collection of several hundred online tools for OSINT
★ 8,213·updated 1mo ago
Mr-xn/Penetration_Testing_POCHTML
渗透测试有关的POC、EXP、脚本、提权、小工具等---About penetration-testing python-script poc getshell csrf xss cms php-getshell domainmod-xss csrf-webshell cobub-razor cve rce sql sql-poc poc-exp bypas…
★ 7,397·updated 3d ago
0xsyr0/OSCPPowerShell
OSCP Cheat Sheet
★ 3,756·updated 4d ago
taielab/awesome-hacking-listsunknown
A curated collection of top-tier penetration testing tools and productivity utilities across multiple domains. Join us to explore, contribute, and enhance your hacking toolkit!
★ 1,351·updated 6mo ago
rng70/TryHackMe-Roadmapunknown
a list of 350+ Free TryHackMe rooms to start learning cybersecurity with THM
★ 1,201·updated 8mo ago
Ignitetechnologies/Linux-Privilege-Escalationunknown
This cheatsheet is aimed at the OSCP aspirants to help them understand the various methods of Escalating Privilege on Linux based Machines and CTFs with examples.
★ 886·updated 3mo ago
Ostorlab/KEVunknown
Ostorlab KEV: One-command to detect most remotely known exploitable vulnerabilities. Sourced from CISA KEV, Google's Tsunami, Ostorlab's Asteroid and Bug Bounty programs.
★ 612·updated 3mo ago
uttambodara/TryHackMeRoadmapunknown
A list of 350+ free TryHackMe rooms💻 to kick off your cybersecurity learning, organized by topics for easy exploration and practical skill-building !💀💥
★ 467·updated today
Articles on news mentioning CVE-2021-3560