CWE-781
Improper Address Validation in IOCTL with METHOD_NEITHER I/O Control Code
The product defines an IOCTL that uses METHOD_NEITHER for I/O, but it does not validate or incorrectly validates the addresses that are provided.
Official CWE-781 definition at MITREImpactr finds and proves weaknesses like CWE-781 in your web apps and APIs - investigating, chaining, and validating each with a reproducible exploit.
Join the waitlist