The dccp_disconnect function in net/dccp/proto.c in the Linux kernel through 4.14.3 allows local users to gain privileges or cause a denial of service (use-after-free) via an AF_UNSPEC connect system call during the DCCP_LISTEN state. (CVE-2017-8824)
Impact
An attacker may exploit this vulnerability to gain privileges.
AI Score
Confidence
EPSS
Percentile
0.4%