Security Advisory

CVE-2019-15876

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-04-28 19:11:39

Last updated 2024-08-05 01:03:31

Assigner freebsd

State PUBLISHED

Description

In FreeBSD 12.1-STABLE before r356089, 12.1-RELEASE before 12.1-RELEASE-p3, 11.3-STABLE before r356090, and 11.3-RELEASE before 11.3-RELEASE-p7, driver specific ioctl command handlers in the oce network driver failed to check whether the caller has sufficient privileges allowing unprivileged users to send passthrough commands to the device firmware.

← Browse all CVEs View on cve.org ↗