CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Positive Technologies•added 2026/01/01 12:0 a.m.•1 views

PT-2026-27661

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A reference count leak exists in the SCSI core when tearing down the SCSI host. This leak can lead to a system hang. An example provided shows iscsid hanging with a specific call trace...

5.5CVSS5.9AI score0.00018EPSS

Exploits0References26

OSV•added 2024/04/10 7:15 p.m.•8 views

CVE-2021-47192

In the Linux kernel, the following vulnerability has been resolved: scsi: core: sysfs: Fix hang when device state is set via sysfs This fixes a regression added with: commit f0f82e2476f6 "scsi: core: Fix capacity set to zero after offlinining device" The problem is that after iSCSI recovery, iscs...

5.3CVSS5.2AI score

Debian CVE•added 2024/04/10 6:56 p.m.•16 views

CVE-2021-47192

5.3CVSS5.6AI score0.00039EPSS

Exploits0

SUSE CVE•added 2023/02/15 6:11 a.m.•1 views

SUSE CVE-2007-3100

usr/log.c in iscsid in open-iscsi iscsi-initiator-utils before 2.0-865 uses a semaphore with insecure permissions world-writable/world-readable for managing log messages using shared memory, which allows local users to cause a denial of service hang by grabbing the semaphore...

2.1CVSS6.4AI score0.00055EPSS

SUSE CVE•added 2023/02/15 6:11 a.m.•1 views

SUSE CVE-2007-3099

usr/mgmtipc.c in iscsid in open-iscsi iscsi-initiator-utils before 2.0-865 checks the client's UID on the listening AFLOCAL socket instead of the new connection, which allows remote attackers to access the management interface and cause a denial of service iscsid exit or iSCSI connection loss...

2.1CVSS6.9AI score0.00233EPSS

SUSE CVE•added 2023/02/15 4:36 a.m.•2 views

SUSE CVE-2017-17840

An issue was discovered in Open-iSCSI through 2.0.875. A local attacker can cause the iscsiuio server to abort or potentially execute code by sending messages with incorrect lengths, which due to lack of checking can lead to buffer overflows, and result in aborts with overflow checking enabled or...

7.3CVSS7.9AI score0.00161EPSS

Exploits0References3

CNVD•added 2018/01/02 12:0 a.m.•1 views

Open-iSCSI Buffer Overflow Vulnerability

Open-iSCSI is an open source iSCSI Small Computer System Interface tool based on the Linux platform. A buffer overflow vulnerability exists in the 'processiscsidbroadcast' function of the iscsiuio/src/unix/iscsidipc.c file in Open-iSCSI 2.0.875 and earlier versions, which stems from the program...

7.8CVSS7.3AI score0.00161EPSS

OSV•added 2007/06/14 7:30 p.m.•1 views

DEBIAN-CVE-2007-3100

2.1CVSS6AI score0.00055EPSS

UbuntuCve•added 2007/06/14 7:30 p.m.•15 views

CVE-2007-3100

2.1CVSS5.9AI score0.00055EPSS

UbuntuCve•added 2007/06/14 7:30 p.m.•22 views

CVE-2007-3099

2.1CVSS6AI score0.00233EPSS

Prion•added 2007/06/14 7:30 p.m.•16 views

Open redirect

2.1CVSS6.6AI score0.00233EPSS

Prion•added 2007/06/14 7:30 p.m.•14 views

Design/Logic Flaw

2.1CVSS6.2AI score0.00055EPSS

CVE•added 2007/06/14 7:0 p.m.•55 views

CVE-2007-3100

CVE-2007-3100 affects open-iscsi (iscsi-initiator-utils) with iscsid before version 2.0-865. The vulnerability is due to a semaphore used for log messages in shared memory that is created with world-writable/world-readable permissions, allowing a local user to grab the semaphore and cause a denia...

2.1CVSS5.8AI score0.00055EPSS

Debian CVE•added 2007/06/14 7:0 p.m.•21 views

CVE-2007-3100

2.1CVSS5.8AI score0.00055EPSS

Exploits0

CVE•added 2007/06/14 7:0 p.m.•66 views

CVE-2007-3099

CVE-2007-3099 affects open-iscsi iscsi-initiator-utils (iscsid) prior to 2.0-865: a local/remote vulnerability where mgmt_ipc.c checks the UID on the listening AF_LOCAL socket instead of the new connection, enabling remote attackers to access the management interface and cause a denial of service...

2.1CVSS6.2AI score0.00233EPSS