Lucene search

K
veracodeVeracode Vulnerability DatabaseVERACODE:19174
HistoryMay 16, 2019 - 2:50 a.m.

Authorization Bypass

2019-05-1602:50:31
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
19

0.0004 Low

EPSS

Percentile

10.1%

Linux kernel is vulnerable to authorization bypass attacks. This is because net/netfilter/nfnetlink_cthelper.c function does not require the CAP_NET_ADMIN capability for new, get, and del operations. This allows local users to bypass intended access restrictions.

References