vulnerability
Red Hat: CVE-2021-3800: Possible privilege escalation thourgh pkexec and aliases (Multiple Advisories)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 5 | (AV:L/AC:M/Au:N/C:C/I:N/A:N) | Nov 9, 2021 | Nov 10, 2021 | Jul 9, 2025 |
Severity
5
CVSS
(AV:L/AC:M/Au:N/C:C/I:N/A:N)
Published
Nov 9, 2021
Added
Nov 10, 2021
Modified
Jul 9, 2025
Description
A flaw was found in glib before version 2.63.6. Due to random charset alias, pkexec can leak content from files owned by privileged users to unprivileged ones under the right condition.
Solution(s)
no-fix-redhat-rpm-packageredhat-upgrade-glib2redhat-upgrade-glib2-debuginforedhat-upgrade-glib2-debugsourceredhat-upgrade-glib2-develredhat-upgrade-glib2-devel-debuginforedhat-upgrade-glib2-docredhat-upgrade-glib2-famredhat-upgrade-glib2-fam-debuginforedhat-upgrade-glib2-staticredhat-upgrade-glib2-testsredhat-upgrade-glib2-tests-debuginfo
References
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.