Vulnerabilities (CVE)

Filtered by vendor Targetcli-fb Project Subscribe
Filtered by product Targetcli-fb
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2020-13867 2 Fedoraproject, Targetcli-fb Project 2 Fedora, Targetcli-fb 2024-02-28 2.1 LOW 5.5 MEDIUM
Open-iSCSI targetcli-fb through 2.1.52 has weak permissions for /etc/target (and for the backup directory and backup files).
CVE-2020-10699 1 Targetcli-fb Project 1 Targetcli-fb 2024-02-28 7.2 HIGH 7.8 HIGH
A flaw was found in Linux, in targetcli-fb versions 2.1.50 and 2.1.51 where the socket used by targetclid was world-writable. If a system enables the targetclid socket, a local attacker can use this flaw to modify the iSCSI configuration and escalate their privileges to root.