VYPR
High severity7.8NVD Advisory· Published Feb 13, 2017· Updated Jun 17, 2026

CVE-2016-2568

CVE-2016-2568

Description

pkexec, when used with --user nonpriv, allows local users to escape to the parent session via a crafted TIOCSTI ioctl call, which pushes characters to the terminal's input buffer.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

4
  • cpe:2.3:a:freedesktop:polkit:*:*:*:*:*:*:*:*
  • cpe:2.3:o:redhat:enterprise_linux:6.0:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:o:redhat:enterprise_linux:6.0:*:*:*:*:*:*:*
    • cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:*
  • Red Hat/pkexecllm-create

Patches

Vulnerability mechanics

References

5

News mentions

0

No linked articles in our index yet.