CVE-2015-4625

NONE EPSS 32.4%
Published Oct 26, 201510y ago · Modified Jun 17, 20262w ago
Find Similar
Published Oct 26, 2015 10y ago
Last Modified Jun 17, 2026 2w ago

Description

Integer overflow in the authentication_agent_new_cookie function in PolicyKit (aka polkit) before 0.113 allows local users to gain privileges by creating a large number of connections, which triggers the issuance of a duplicate cookie value.

Threat Intelligence

EPSS Exploit Probability
32.4% percentile
Exploit & Patch Status
No Known Exploit
No Patch Available

Weaknesses 1

CWE-189

Affected Products 5

VendorProductVersionRange
fedoraprojectfedora21any
fedoraprojectfedora22any
opensuseopensuse13.1any
opensuseopensuse13.2any
polkit_projectpolkit* ≤0.112

References 12

Remediation

No remediation data recorded yet

Check vendor advisories and the NVD entry for patch availability.