Lucene search

K
osvGoogleOSV:USN-4713-1
HistoryFeb 02, 2021 - 6:17 a.m.

linux-aws, linux-aws-5.4, linux-azure, linux-azure-5.4, linux-gcp, linux-gcp-5.4, linux-gke-5.4, linux-gkeop-5.4, linux-kvm, linux-oracle, linux-oracle-5.4, linux-raspi, linux-raspi-5.4 vulnerability

2021-02-0206:17:58
Google
osv.dev
9

AI Score

8

Confidence

High

EPSS

0.004

Percentile

72.9%

It was discovered that the LIO SCSI target implementation in the Linux
kernel performed insufficient identifier checking in certain XCOPY
requests. An attacker with access to at least one LUN in a multiple
backstore environment could use this to expose sensitive information or
modify data.