Unverified Netlink Messages in v86d Before 0.1.10 Vulnerability

Unverified Netlink Messages in v86d Before 0.1.10 Vulnerability

CVE-2011-1070 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

v86d before 0.1.10 do not verify if received netlink messages are sent by the kernel. This could allow unprivileged users to manipulate the video mode and potentially other consequences.

Learn more about our User Device Pen Test.