CVE-2011-4945

Risk Scores

Affected Products

Exploit Intelligence

• [oss-security] 20120327 Re: CVE Request: PolicyKit change allows users in "wheel" group to become root without a password (circl)
• https://bugs.gentoo.org/show_bug.cgi?id=401513 (circl)
• http://patch-tracker.debian.org/patch/series/view/policykit-1/0.104-2/05_revert-admin-identities-unix-group-wheel.patch (circl)
• https://launchpad.net/ubuntu/+source/policykit-1/0.103-1 (circl)
• [polkit-devel] 20111206 polkit 0.103 (circl)
• GLSA-201204-06 (circl)
• 48817 (circl)
• http://cgit.freedesktop.org/PolicyKit/commit/?id=763faf434b445c20ae9529100d3ef5290976d0c9 (circl)
• [oss-security] 20120327 CVE Request: PolicyKit change allows users in "wheel" group to become root without a password (circl)

Timeline

• Oct 1, 2012 CVE Published
• Feb 4, 2022 EPSS Score
• Mar 29, 2022 EPSS Score
• May 17, 2022 CVE Updated
• May 20, 2022 EPSS Score
• Jul 12, 2022 EPSS Score
• Sep 4, 2022 EPSS Score
• Oct 26, 2022 EPSS Score
• Dec 18, 2022 EPSS Score
• Feb 9, 2023 EPSS Score
• Mar 7, 2023 EPSS Score
• Apr 2, 2023 EPSS Score

References

• https://bugs.gentoo.org/show_bug.cgi?id=401513 technical
• [oss-security] 20120327 Re: CVE Request: PolicyKit change allows users in "wheel" group to become root without a password mailing-list
• http://patch-tracker.debian.org/patch/series/view/policykit-1/0.104-2/05_revert-admin-identities-unix-group-wheel.patch url
• https://launchpad.net/ubuntu/+source/policykit-1/0.103-1 url
• [polkit-devel] 20111206 polkit 0.103 mailing-list
• GLSA-201204-06 vendor-advisory
• 48817 third-party-advisory
• http://cgit.freedesktop.org/PolicyKit/commit/?id=763faf434b445c20ae9529100d3ef5290976d0c9 url
• [oss-security] 20120327 CVE Request: PolicyKit change allows users in "wheel" group to become root without a password mailing-list
• https://nvd.nist.gov/vuln/detail/CVE-2011-4945 advisory
• http://www.mail-archive.com/polkit-devel@lists.freedesktop.org/msg00327.html url