SecPod SCAP Repo, a repository of SCAP Content (CVE, CCE, CPE, CWE, OVAL and XCCDF)

Download | Alert*

CVE

CVE-2020-28374

In drivers/target/target_core_xcopy.c in the Linux kernel before 5.10.7, insufficient identifier checking in the LIO SCSI target code can be used by remote attackers to read or write files via directory traversal in an XCOPY request, aka CID-2896c93811e3. For example, an attack can occur over a network if the attacker has access to one iSCSI LUN. The attacker gains control over file access because I/O operations are proxied via an attacker-selected backstore.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V3 Severity:		CVSS V2 Severity:
CVSS Score : 8.1		CVSS Score : 5.5
Exploit Score: 2.8		Exploit Score: 8.0
Impact Score: 5.2		Impact Score: 4.9

CVSS V3 Metrics:		CVSS V2 Metrics:
Attack Vector: NETWORK		Access Vector: NETWORK
Attack Complexity: LOW		Access Complexity: LOW
Privileges Required: LOW		Authentication: SINGLE
User Interaction: NONE		Confidentiality: PARTIAL
Scope: UNCHANGED		Integrity: PARTIAL
Confidentiality: HIGH		Availability: NONE
Integrity: HIGH
Availability: NONE

Reference:

DSA-4843

FEDORA-2021-082e638d02

FEDORA-2021-4a91649cf3

FEDORA-2021-620fb40359

https://lists.debian.org/debian-lts-announce/2021/02/msg00018.html

https://lists.debian.org/debian-lts-announce/2021/03/msg00010.html

http://www.openwall.com/lists/oss-security/2021/01/13/5

http://packetstormsecurity.com/files/161229/Kernel-Live-Patch-Security-Notice-LSN-0074-1.html

https://bugzilla.suse.com/attachment.cgi?id=844938

https://bugzilla.suse.com/show_bug.cgi?id=1178372

https://cdn.kernel.org/pub/linux/kernel/v5.x/ChangeLog-5.10.7

https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=2896c93811e39d63a4d9b63ccf12a8fbc226e5e4

https://github.com/torvalds/linux/commit/2896c93811e39d63a4d9b63ccf12a8fbc226e5e4

https://security.netapp.com/advisory/ntap-20210219-0002/


30479



423868



248364



909



195388



282