VDB

CVE-2021-3139

CVE-2021-3139 PUBLISHED

In Open-iSCSI tcmu-runner 1.3.x, 1.4.x, and 1.5.x through 1.5.2, xcopy_locate_udev in tcmur_cmd_handler.c lacks a check for transport-layer restrictions, allowing remote attackers to read or write files via directory traversal in an XCOPY request. For example, an attack can occur over a network if the attacker has access to one iSCSI LUN. NOTE: relative to CVE-2020-28374, this is a similar mistake in a different algorithm.

EPSS 0.91% · 76.3th percentile

Risk Scores

EPSS Score
0.91%
76.3th percentile

Affected Products

VendorProductVersions
Ubuntu:22.04:LTStcmu1.5.4-2, 1.5.2-6, 0
Ubuntu:20.04:LTStcmu1.5.2-2ubuntu1, 1.5.2-3, 1.5.2-4
Ubuntu:25.10tcmu0, 1.5.4-9
Ubuntu:24.04:LTStcmu1.5.4-4.1, 1.5.4-5, 1.5.4-6ubuntu1

Timeline

  • Jan 13, 2021 CVE Published
  • Apr 14, 2021 EPSS Score
  • Jun 23, 2021 EPSS Score
  • Aug 24, 2021 EPSS Score
  • Dec 27, 2021 EPSS Score
  • Jan 6, 2022 EPSS Score
  • Feb 4, 2022 EPSS Score
  • Feb 28, 2022 EPSS Score
  • Apr 1, 2022 EPSS Score
  • Jul 3, 2022 EPSS Score
  • Sep 4, 2022 EPSS Score
  • Nov 6, 2022 EPSS Score
Open in Interactive Console →
$ Console Community · 100/wk Open console ›