llcp_sock_create in net/nfc/llcp_sock.c in the AF_NFC network module in the Linux kernel through 5.3.2 does not enforce CAP_NET_RAW, which means that unprivileged users can create a raw socket, aka CID-3a359798b176.
References
Configurations
Information
Published : 2019-10-01 07:15
Updated : 2019-10-25 13:15
NVD link : CVE-2019-17056
Mitre link : CVE-2019-17056
JSON object : View
CWE
CWE-276
Incorrect Default Permissions
Products Affected
linux
- linux_kernel