{"id":251135,"date":"2026-05-21T02:46:00","date_gmt":"2026-05-21T06:46:00","guid":{"rendered":"https:\/\/news-you-need.com\/index.php\/2026\/05\/21\/cve-2026-5140-flaw-grants-root-access-on-pardus-linux\/"},"modified":"2026-05-21T05:30:08","modified_gmt":"2026-05-21T09:30:08","slug":"cve-2026-5140-flaw-grants-root-access-on-pardus-linux","status":"publish","type":"post","link":"https:\/\/news-you-need.com\/index.php\/2026\/05\/21\/cve-2026-5140-flaw-grants-root-access-on-pardus-linux\/","title":{"rendered":"CVE-2026\u20135140 Flaw Grants Root Access On Pardus Linux"},"content":{"rendered":"<p><a href=\"https:\/\/thecyberexpress.com\/cve-2026-5140-pardus-linux-root-access-flaw\/\">CVE-2026\u20135140 Flaw Grants Root Access On Pardus Linux<\/a><\/p>\n<p><a href=\"https:\/\/thecyberexpress.com\/cve-2026-5140-pardus-linux-root-access-flaw\/\">https:\/\/thecyberexpress.com\/cve-2026-5140-pardus-linux-root-access-flaw\/<\/a><\/p>\n<p>Publish Date: <a href=\"publish_date]\">2026-05-21 02:46:00<\/a><\/p>\n<p>Source Domain: <a href=\"thecyberexpress.com\">thecyberexpress.com<\/a><\/p>\n<p><span data-contrast=\"auto\">A critical local privilege escalation vulnerability chain tracked as CVE-2026\u20135140 has exposed serious security weaknesses in Pardus Linux. Researchers revealed that the flaws allow any unprivileged local user to gain full root access without authentication, potentially leading to complete system compromise within seconds.<\/span><span data-ccp-props=\"{\"134233117\":false,\"134233118\":false,\"335551550\":0,\"335551620\":0,\"335559738\":240,\"335559739\":240}\">\u00a0<\/span><\/p>\n<p><span data-contrast=\"auto\">The vulnerability affects the\u00a0<\/span><span data-contrast=\"auto\">pardus-update<\/span><span data-contrast=\"auto\">\u00a0package, which handles system updates through graphical tools and privileged Python helper scripts. The issue received a CVSS v3.1 score of 9.3, classifying it as \u201cCritical.\u201d The published vector is:<\/span><span data-ccp-props=\"{\"134233117\":false,\"134233118\":false,\"335551550\":0,\"335551620\":0,\"335559738\":240,\"335559739\":240}\">\u00a0<\/span><\/p>\n<p><span data-contrast=\"auto\">CVSS:3.1\/AV:L\/AC:L\/PR:N\/UI:N\/S:C\/C:H\/I:H\/A:H<\/span><span data-ccp-props=\"{\"134233117\":false,\"134233118\":false,\"335551550\":0,\"335551620\":0,\"335559738\":240,\"335559739\":240}\">\u00a0<\/span><\/p>\n<p><span data-contrast=\"auto\">Maintained by T\u00dcB\u0130TAK, Pardus Linux is widely used across Turkish government institutions, schools, and enterprise environments. Researchers\u00a0stated\u00a0that the attack chain behind CVE-2026\u20135140 combines three separate vulnerabilities: a\u00a0Polkit\u00a0authorization bypass, a CRLF injection flaw, and an untrusted search path issue.<\/span><span data-ccp-props=\"{\"134233117\":false,\"134233118\":false,\"335551550\":0,\"335551620\":0,\"335559738\":240,\"335559739\":240}\">\u00a0<\/span><\/p>\n<h3 aria-level=\"2\"><span data-contrast=\"none\">Polkit Misconfiguration Opens the Door<\/span><span data-ccp-props=\"{\"134233117\":false,\"134233118\":false,\"134245418\":true,\"134245529\":true,\"335551550\":0,\"335551620\":0,\"335559738\":299,\"335559739\":299}\">\u00a0<\/span><\/h3>\n<p><span data-contrast=\"auto\">The first issue was\u00a0identified\u00a0in the file:<\/span><span data-ccp-props=\"{\"134233117\":false,\"134233118\":false,\"335551550\":0,\"335551620\":0,\"335559738\":240,\"335559739\":240}\">\u00a0<\/span><\/p>\n<p><span data-contrast=\"auto\">\/usr\/share\/polkit-1\/actions\/tr.org.pardus.pkexec.pardus-update.policy<\/span><span data-ccp-props=\"{\"134233117\":false,\"134233118\":false,\"335551550\":0,\"335551620\":0,\"335559738\":240,\"335559739\":240}\">\u00a0<\/span><\/p>\n<p><img decoding=\"async\" src=\"https:\/\/thecyberexpress.com\/wp-content\/uploads\/report-ad-banner.webp\" alt=\"report-ad-banner\" srcset=\"https:\/\/thecyberexpress.com\/wp-content\/uploads\/report-ad-banner.webp 1200w, https:\/\/thecyberexpress.com\/wp-content\/uploads\/report-ad-banner-300x45.webp 300w, https:\/\/thecyberexpress.com\/wp-content\/uploads\/report-ad-banner-1024x152.webp 1024w, https:\/\/thecyberexpress.com\/wp-content\/uploads\/report-ad-banner-768x114.webp 768w, https:\/\/thecyberexpress.com\/wp-content\/uploads\/report-ad-banner-600x89.webp 600w, https:\/\/thecyberexpress.com\/wp-content\/uploads\/report-ad-banner-150x22.webp 150w, https:\/\/thecyberexpress.com\/wp-content\/uploads\/report-ad-banner-750x111.webp 750w, https:\/\/thecyberexpress.com\/wp-content\/uploads\/report-ad-banner-1140x169.webp 1140w, https:\/\/thecyberexpress.com\/wp-content\/uploads\/report-ad-banner.webp 1200w, https:\/\/thecyberexpress.com\/wp-content\/uploads\/report-ad-banner-300x45.webp 300w, https:\/\/thecyberexpress.com\/wp-content\/uploads\/report-ad-banner-1024x152.webp 1024w, https:\/\/thecyberexpress.com\/wp-content\/uploads\/report-ad-banner-768x114.webp 768w, https:\/\/thecyberexpress.com\/wp-content\/uploads\/report-ad-banner-600x89.webp 600w, https:\/\/thecyberexpress.com\/wp-content\/uploads\/report-ad-banner-150x22.webp 150w, https:\/\/thecyberexpress.com\/wp-content\/uploads\/report-ad-banner-750x111.webp 750w, https:\/\/thecyberexpress.com\/wp-content\/uploads\/report-ad-banner-1140x169.webp 1140w\" sizes=\"(max-width: 1200px) 100vw, 1200px\" width=\"1200\" height=\"178\"\/><\/p>\n<p><span data-contrast=\"auto\">Researchers discovered that several privileged actions were configured with unrestricted access permissions:<\/span><span data-ccp-props=\"{\"134233117\":false,\"134233118\":false,\"335551550\":0,\"335551620\":0,\"335559738\":240,\"335559739\":240}\">\u00a0<\/span><\/p>\n<p><span data-contrast=\"auto\"><\/span><br \/><span data-contrast=\"auto\">\u00a0yes<\/span><br \/><span data-contrast=\"auto\">\u00a0yes<\/span><br \/><span data-contrast=\"auto\">\u00a0yes<\/span><br \/><span data-contrast=\"auto\"\/><span data-ccp-props=\"{\"134233117\":false,\"134233118\":false,\"335551550\":0,\"335551620\":0,\"335559738\":0,\"335559739\":0}\">\u00a0<\/span><\/p>\n<p><span data-contrast=\"auto\">Because of this configuration, any local user could execute privileged operations through\u00a0<\/span><span data-contrast=\"auto\">pkexec<\/span><span data-contrast=\"auto\">\u00a0without entering an administrator password. The vulnerable actions included\u00a0<\/span><span data-contrast=\"auto\">aptupdateaction<\/span><span data-contrast=\"auto\">,\u00a0<\/span><span data-contrast=\"auto\">autoaptupgradeaction<\/span><span data-contrast=\"auto\">, and\u00a0<\/span><span data-contrast=\"auto\">systemsettingswrite<\/span><span data-contrast=\"auto\">.<\/span><span data-ccp-props=\"{\"134233117\":false,\"134233118\":false,\"335551550\":0,\"335551620\":0,\"335559738\":240,\"335559739\":240}\">\u00a0<\/span><\/p>\n<p><span data-contrast=\"auto\">This allowed attackers to run the following scripts as root:<\/span><span data-ccp-props=\"{\"134233117\":false,\"134233118\":false,\"335551550\":0,\"335551620\":0,\"335559738\":240,\"335559739\":240}\">\u00a0<\/span><\/p>\n<ul>\n<li><span data-contrast=\"auto\">SystemSettingsWrite.py<\/span><span data-contrast=\"auto\">\u00a0<\/span><span data-ccp-props=\"{\"134233117\":false,\"134233118\":false,\"335551550\":0,\"335551620\":0,\"335559738\":0,\"335559739\":0}\">\u00a0<\/span><\/li>\n<li><span data-contrast=\"auto\">AutoAptUpgrade.py<\/span><span data-contrast=\"auto\">\u00a0<\/span><span data-ccp-props=\"{\"134233117\":false,\"134233118\":false,\"335551550\":0,\"335551620\":0,\"335559738\":0,\"335559739\":0}\">\u00a0<\/span><\/li>\n<\/ul>\n<h3 aria-level=\"2\"><span data-contrast=\"none\">CRLF Injection Enables Configuration Manipulation<\/span><strong> in Pardus Linux<\/strong><\/h3>\n<p><span data-contrast=\"auto\">The second flaw in CVE-2026\u20135140 involved\u00a0<\/span><span data-contrast=\"auto\">SystemSettingsWrite.py<\/span><span data-contrast=\"auto\">, which writes user-controlled input into the configuration file:<\/span><span data-ccp-props=\"{\"134233117\":false,\"134233118\":false,\"335551550\":0,\"335551620\":0,\"335559738\":240,\"335559739\":240}\">\u00a0<\/span><\/p>\n<p><span data-contrast=\"auto\">\/etc\/pardus\/pardus-update.conf<\/span><span data-ccp-props=\"{\"134233117\":false,\"134233118\":false,\"335551550\":0,\"335551620\":0,\"335559738\":240,\"335559739\":240}\">\u00a0<\/span><\/p>\n<p><span data-contrast=\"auto\">Although Python\u2019s\u00a0<\/span><span data-contrast=\"auto\">ConfigParser<\/span><span data-contrast=\"auto\">\u00a0sanitizes newline characters (<\/span><span data-contrast=\"auto\">n<\/span><span data-contrast=\"auto\">), it does not properly filter carriage returns (<\/span><span data-contrast=\"auto\">r<\/span><span data-contrast=\"auto\">). Attackers could exploit&#8230;<\/span><\/p>\n<p><a href=\"https:\/\/thecyberexpress.com\/cve-2026-5140-pardus-linux-root-access-flaw\/\">Source<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>CVE-2026\u20135140 Flaw Grants Root Access On Pardus Linux https:\/\/thecyberexpress.com\/cve-2026-5140-pardus-linux-root-access-flaw\/ Publish Date: 2026-05-21 02:46:00 Source Domain:&#8230;<\/p>\n","protected":false},"author":1,"featured_media":251138,"comment_status":"closed","ping_status":"","sticky":false,"template":"","format":"standard","meta":{"fifu_image_url":"https:\/\/thecyberexpress.com\/wp-content\/uploads\/Pardus-Linux.webp","fifu_image_alt":"","footnotes":""},"categories":[48],"tags":[90,31,89,71,57,27],"class_list":["post-251135","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-linux","tag-cve","tag-exploit","tag-flaw","tag-linux","tag-security","tag-vulnerability"],"_links":{"self":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/251135"}],"collection":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/comments?post=251135"}],"version-history":[{"count":1,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/251135\/revisions"}],"predecessor-version":[{"id":251140,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/251135\/revisions\/251140"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/media\/251138"}],"wp:attachment":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/media?parent=251135"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/categories?post=251135"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/tags?post=251135"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}