Unrated severityNVD Advisory· Published Jun 5, 2020· Updated Aug 4, 2024
CVE-2020-13867
CVE-2020-13867
Description
Open-iSCSI targetcli-fb through 2.1.52 has weak permissions for /etc/target (and for the backup directory and backup files).
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
11- Open-iSCSI/targetcli-fbdescription
- Range: <=2.1.52
- osv-coords9 versionspkg:rpm/opensuse/targetcli&distro=openSUSE%20Tumbleweedpkg:rpm/opensuse/targetcli-fb&distro=openSUSE%20Leap%2015.1pkg:rpm/opensuse/targetcli-fb&distro=openSUSE%20Leap%2015.2pkg:rpm/suse/targetcli-fb&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP1pkg:rpm/suse/targetcli-fb&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP2pkg:rpm/suse/targetcli-fb&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Python%202%2015%20SP1pkg:rpm/suse/targetcli-fb&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Python%202%2015%20SP2pkg:rpm/suse/targetcli-fb&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5pkg:rpm/suse/targetcli-fb&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP5
< 2.1.54-1.2+ 8 more
- (no CPE)range: < 2.1.54-1.2
- (no CPE)range: < 2.1.49-lp151.2.10.1
- (no CPE)range: < 2.1.52-lp152.2.3.1
- (no CPE)range: < 2.1.49-10.9.1
- (no CPE)range: < 2.1.52-3.3.1
- (no CPE)range: < 2.1.49-10.9.1
- (no CPE)range: < 2.1.52-3.3.1
- (no CPE)range: < 2.1.43-7.9.4
- (no CPE)range: < 2.1.43-7.9.4
Patches
Vulnerability mechanics
References
5- lists.opensuse.org/opensuse-security-announce/2020-08/msg00003.htmlmitrevendor-advisoryx_refsource_SUSE
- lists.opensuse.org/opensuse-security-announce/2020-08/msg00005.htmlmitrevendor-advisoryx_refsource_SUSE
- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6LANBGRCCZBPKKBD5ZMJS7C7DYAHYR6B/mitrevendor-advisoryx_refsource_FEDORA
- security.gentoo.org/glsa/202008-22mitrevendor-advisoryx_refsource_GENTOO
- github.com/open-iscsi/targetcli-fb/pull/172mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.