Total
2 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2020-13867 | 2 Fedoraproject, Targetcli-fb Project | 2 Fedora, Targetcli-fb | 2024-02-28 | 2.1 LOW | 5.5 MEDIUM |
Open-iSCSI targetcli-fb through 2.1.52 has weak permissions for /etc/target (and for the backup directory and backup files). | |||||
CVE-2020-10699 | 1 Targetcli-fb Project | 1 Targetcli-fb | 2024-02-28 | 7.2 HIGH | 7.8 HIGH |
A flaw was found in Linux, in targetcli-fb versions 2.1.50 and 2.1.51 where the socket used by targetclid was world-writable. If a system enables the targetclid socket, a local attacker can use this flaw to modify the iSCSI configuration and escalate their privileges to root. |