Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

github логотип

GHSA-cpcw-p965-wpqx

Опубликовано: 24 мая 2022
Источник: github
Github: Прошло ревью
CVSS3: 7.8

Описание

rtslib-fb weak permissions for /etc/target/saveconfig.json file

Python rtslib-fb through 2.1.72 has weak permissions for /etc/target/saveconfig.json because shutil.copyfile (instead of shutil.copy) is used, and thus permissions are not preserved.

Ссылки

Пакеты

Наименование

rtslib-fb

pip
Затронутые версииВерсия исправления

<= 2.1.72

2.1.73

EPSS

Процентиль: 29%
0.00103
Низкий

7.8 High

CVSS3

CVE ID

CVE-2020-14019

Дефекты

CWE-276

Связанные уязвимости

ubuntu логотип

CVE-2020-14019

CVSS3: 7.8
ubuntu
больше 5 лет назад

Open-iSCSI rtslib-fb through 2.1.72 has weak permissions for /etc/target/saveconfig.json because shutil.copyfile (instead of shutil.copy) is used, and thus permissions are not preserved.

redhat логотип

CVE-2020-14019

CVSS3: 6.6
redhat
больше 5 лет назад

Open-iSCSI rtslib-fb through 2.1.72 has weak permissions for /etc/target/saveconfig.json because shutil.copyfile (instead of shutil.copy) is used, and thus permissions are not preserved.

nvd логотип

CVE-2020-14019

CVSS3: 7.8
nvd
больше 5 лет назад

Open-iSCSI rtslib-fb through 2.1.72 has weak permissions for /etc/target/saveconfig.json because shutil.copyfile (instead of shutil.copy) is used, and thus permissions are not preserved.

debian логотип

CVE-2020-14019

CVSS3: 7.8
debian
больше 5 лет назад

Open-iSCSI rtslib-fb through 2.1.72 has weak permissions for /etc/targ ...

suse-cvrf логотип

openSUSE-SU-2020:1156-1

suse-cvrf
больше 5 лет назад

Security update for python-rtslib-fb

EPSS

Процентиль: 29%
0.00103
Низкий

7.8 High

CVSS3

CVE ID

CVE-2020-14019

Дефекты

CWE-276