CVE-2020-13867

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2020-13867
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2020-13867.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2020-13867
Downstream
Related
Published
2020-06-05T18:15:13.510Z
Modified
2026-03-15T22:32:34.277559Z
Severity
  • 5.5 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N CVSS Calculator
Summary
[none]
Details

Open-iSCSI targetcli-fb through 2.1.52 has weak permissions for /etc/target (and for the backup directory and backup files).

References

Affected packages

Git / github.com/open-iscsi/targetcli-fb

Affected ranges

Type
GIT
Repo
https://github.com/open-iscsi/targetcli-fb
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
bab9fc16236c4aceade31e95327bc7b493bb157a
Database specific 
{
    "versions": [
        {
            "introduced": "0"
        },
        {
            "last_affected": "2.1.52"
        }
    ]
}

Affected versions

1.*
1.99
2.*
2.0rc1
v2.*
v2.0.fb20
v2.0.fb21
v2.0.fb22
v2.0rc1.fb1
v2.0rc1.fb10
v2.0rc1.fb11
v2.0rc1.fb12
v2.0rc1.fb13
v2.0rc1.fb14
v2.0rc1.fb15
v2.0rc1.fb16
v2.0rc1.fb17
v2.0rc1.fb18
v2.0rc1.fb19
v2.0rc1.fb2
v2.0rc1.fb3
v2.0rc1.fb4
v2.0rc1.fb5
v2.0rc1.fb6
v2.0rc1.fb7
v2.0rc1.fb8
v2.0rc1.fb9
v2.1.50
v2.1.51
v2.1.52
v2.1.fb22
v2.1.fb23
v2.1.fb24
v2.1.fb25
v2.1.fb26
v2.1.fb27
v2.1.fb28
v2.1.fb29
v2.1.fb30
v2.1.fb31
v2.1.fb32
v2.1.fb33
v2.1.fb34
v2.1.fb35
v2.1.fb36
v2.1.fb37
v2.1.fb38
v2.1.fb39
v2.1.fb40
v2.1.fb41
v2.1.fb42
v2.1.fb43
v2.1.fb44
v2.1.fb45
v2.1.fb46
v2.1.fb47
v2.1.fb48
v2.1.fb49

Database specific

unresolved_ranges 
[
    {
        "events": [
            {
                "introduced": "0"
            },
            {
                "last_affected": "32"
            }
        ]
    }
]
source 
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2020-13867.json"