SEKOIA.IO's insights on the PwnKit LPE (CVE-2021-4034) 💣

On the 25 January 2022, a local privilege escalation (LPE) vulnerability affecting pkexec and dubbed “PwnKit” was published. SEKOIA.IO digged on that new LPE vulnerability in a FLINT (Flash Intelligence Report) to know its real scope and provide advices to detect the exploitation attempts and protect your endpoints against it.