CWE-782
Overview
- CWE ID
- 782
- CWE Name
- Exposed IOCTL with Insufficient Access Control
- CWE Abstraction
- Variant
- CWE structure
- Simple
- CWE Status
- Draft
Description
The software implements an IOCTL with functionality that should be restricted, but it does not properly enforce access control for the IOCTL.