Astra Linux – Vulnerability in targetcli-fb

The Open-iSCSI TargetCLI-fb version up to 2.1.52 has weak permissions for the /etc/target directory as well as for the backup directory and backup files...

MiracleLinux 7 : targetcli-2.1.53-1.el7 (AXSA:2020-989:04)

The remote MiracleLinux 7 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2020-989:04 advisory. targetcli: weak permissions for /etc/target and backup files CVE-2020-13867 Tenable has extracted the preceding description block directly from the MiracleLin...

MiracleLinux 8 : targetcli-2.1.51-4.el8 (AXSA:2020-296:01)

The remote MiracleLinux 8 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2020-296:01 advisory. targetcli: world writable /var/run/targetclid.sock allows unprivileged user to execute commands CVE-2020-10699 Tenable has extracted the preceding description...

MiracleLinux 8 : targetcli-2.1.53-1.el8 (AXSA:2020-1067:05)

The remote MiracleLinux 8 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2020-1067:05 advisory. targetcli: weak permissions for /etc/target and backup files CVE-2020-13867 Tenable has extracted the preceding description block directly from the...

EUVD-2020-3130

Malware in sbrugna...

EUVD-2020-6078

Malware in sbrugna...

Alibaba Cloud Linux 3 : 0092: targetcli (ALINUX3-SA-2021:0092)

The remote Alibaba Cloud Linux 3 host has a package installed that is affected by a vulnerability as referenced in the ALINUX3-SA-2021:0092 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2020-10699: A flaw was found in Linux, in...

targetcli bug fix and enhancement update

An update is available for targetcli. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list For detailed information on changes in this release, see the Rocky Linux 9....

CentOS 7 : targetcli (RHSA-2020:5434)

The remote CentOS Linux 7 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2020:5434 advisory. - Open-iSCSI targetcli-fb through 2.1.52 has weak permissions for /etc/target and for the backup directory and backup files. CVE-2020-13867 Note that Nessus has...

RHSA-2020:5434 Red Hat Security Advisory: targetcli security update

Bulletin has no description...

RHSA-2020:4697 Red Hat Security Advisory: targetcli security and enhancement update

Bulletin has no description...

RHSA-2020:1933 Red Hat Security Advisory: targetcli security update

Bulletin has no description...

OPENSUSE-SU-2024:11423-1 python36-targetcli-fb-2.1.54-1.2 on GA media

These are all security issues fixed in the python36-targetcli-fb-2.1.54-1.2 package on the GA media of openSUSE Tumbleweed...

Ubuntu 20.04 ESM : targetcli-fb vulnerabilities (USN-4871-1)

The remote Ubuntu 20.04 ESM host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-4871-1 advisory. It was discovered that targetcli-fb did not properly manage socket permissions. A local attacker could use this issue to modify the iSCSI configuration...

The vulnerability of the targetcli iSCSI-client’s command interface allows a hacker to gain access to confidential data.

The vulnerability of the targetcli iSCSI client’s command shell is related to the lack of access control over the /etc/target directory, the backup directory, and the backup files. Exploiting this vulnerability allows an attacker to gain access to confidential data...

SUSE CVE-2020-10699

A flaw was found in Linux, in targetcli-fb versions 2.1.50 and 2.1.51 where the socket used by targetclid was world-writable. If a system enables the targetclid socket, a local attacker can use this flaw to modify the iSCSI configuration and escalate their privileges to root...

SUSE CVE-2020-13867

Open-iSCSI targetcli-fb through 2.1.52 has weak permissions for /etc/target and for the backup directory and backup files...

Ubuntu: Security Advisory (USN-4871-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

OESA-2022-1804 targetcli security update

Targetcli is an administration tool for managing storage targets using the kernel LIO core target and compatible target fabric modules. Security Fixes: Open-iSCSI targetcli-fb through 2.1.52 has weak permissions for /etc/target and for the backup directory and backup files.CVE-2020-13867...

OESA-2022-1805 targetcli security update

Targetcli is an administration tool for managing storage targets using the kernel LIO core target and compatible target fabric modules. Security Fixes: Open-iSCSI targetcli-fb through 2.1.52 has weak permissions for /etc/target and for the backup directory and backup files.CVE-2020-13867...