Every CVE whose affected-product data names Freedesktop Polkit, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2016-2568 — CVSS 7.8 (high): pkexec, when used with --user nonpriv, allows local users to escape to the parent session via a crafted TIOCSTI ioctl call, which pushes…
CVE-2026-4897 — CVSS 5.5 (medium): A flaw was found in polkit. A local user can exploit this by providing a specially crafted, excessively long input to the…