7 matches found
Ubuntu 18.04 LTS / 20.04 LTS / 22.04 LTS / 24.04 LTS : zuluCrypt vulnerability (USN-8218-1)
The remote Ubuntu 18.04 LTS / 20.04 LTS / 22.04 LTS / 24.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-8218-1 advisory. Aaron Rainbolt discovered that zuluCrypt used insecure PolicyKit settings in zuluPolkit. An attacker could possibly use this...
USN-8218-1 zulucrypt vulnerability
Aaron Rainbolt discovered that zuluCrypt used insecure PolicyKit settings in zuluPolkit. An attacker could possibly use this issue to cause local privilege escalation to root. CVE-2025-53391...
USN-8218-1: zuluCrypt vulnerability
Aaron Rainbolt discovered that zuluCrypt used insecure PolicyKit settings in zuluPolkit. An attacker could possibly use this issue to cause local privilege escalation to root. CVE-2025-53391...
CVE-2025-53391
A flaw was found in zulucrypt. Misconfigured PolicyKit allows settings within the CMakeLists.txt file to permit a local user to elevate their privileges to root. This insecure configuration bypasses authorization checks, allowing unauthorized actions. The vulnerability is triggered by the PolicyK...
CVE-2025-53391
The Debian zuluPolkit/CMakeLists.txt file for zuluCrypt through the zulucrypt6.2.0-1 package has insecure PolicyKit allowany/allowinactive/allowactive settings that allow a local user to escalate their privileges to root...
CVE-2025-53391
CVE-2025-53391 affects Debian zuluCrypt (zulucrypt_6.2.0-1) where PolicyKit settings in zuluPolkit/CMakeLists.txt are insecure (allow_any/allow_inactive/allow_active). This misconfiguration allows a local user to escalate privileges to root via PolicyKit authorization. Debian patched this issue (...
CVE-2025-53391
The Debian zuluPolkit/CMakeLists.txt file for zuluCrypt through the zulucrypt6.2.0-1 package has insecure PolicyKit allowany/allowinactive/allowactive settings that allow a local user to escalate their privileges to root...