VYPR
Medium severity5.5NVD Advisory· Published Mar 26, 2026· Updated Apr 21, 2026

CVE-2026-4897

CVE-2026-4897

Description

A flaw was found in polkit. A local user can exploit this by providing a specially crafted, excessively long input to the polkit-agent-helper-1 setuid binary via standard input (stdin). This unbounded input can lead to an out-of-memory (OOM) condition, resulting in a Denial of Service (DoS) for the system.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

20

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.