Lucene search
Veracode Vulnerability DatabaseVERACODE:30382HistoryMay 07, 2021 - 11:56 a.m.
Directory Traversal
2021-05-0711:56:01
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
13
0.002 Low
EPSS
Percentile
54.2%
tcmu-runner is vulnerable to directory traversal. A remote attacker is able to read or write files to an arbitrary location on the file system in an XCOPY request.
References
www.openwall.com/lists/oss-security/2021/01/13/5
access.redhat.com/errata/RHSA-2021:1452
access.redhat.com/security/updates/classification/#important
bugzilla.redhat.com/show_bug.cgi?id=1916045
bugzilla.suse.com/attachment.cgi?id=844938
bugzilla.suse.com/show_bug.cgi?id=1178372
github.com/open-iscsi/tcmu-runner/pull/644
nvd.nist.gov/vuln/detail/CVE-2021-3139
www.openwall.com/lists/oss-security/2021/01/12/12
Related
nessus
nessus
openSUSE Security Update : tcmu-runner (openSUSE-2021-128)
2021-01-25 00:00:00
openSUSE Security Update : tcmu-runner (openSUSE-2021-97)
2021-01-25 00:00:00
SUSE SLES15 Security Update : tcmu-runner (SUSE-SU-2021:0158-1)
2021-01-20 00:00:00
suse
suse
Security update for tcmu-runner (important)
2021-01-20 00:00:00
Security update for tcmu-runner (important)
2021-01-17 00:00:00
openvas
openvas
openSUSE: Security Advisory for tcmu-runner (openSUSE-SU-2021:0128-1)
2021-04-16 00:00:00
openSUSE: Security Advisory for tcmu-runner (openSUSE-SU-2021:0097-1)
2021-04-16 00:00:00
SUSE: Security Advisory (SUSE-SU-2021:0158-1)
2021-04-19 00:00:00
redhatcve
redhatcve
CVE-2021-3139
2021-01-14 02:22:17
ubuntu
ubuntu
TCMU vulnerability
2021-01-28 00:00:00
osv
osv
tcmu vulnerability
2021-01-28 13:41:59
CVE-2021-3139
2021-01-13 16:15:14
debiancve
debiancve
CVE-2021-3139
2021-01-13 16:15:14
nvd
nvd
CVE-2021-3139
2021-01-13 16:15:14
ubuntucve
ubuntucve
CVE-2021-3139
2021-01-13 00:00:00
cvelist
cvelist
CVE-2021-3139
2021-01-13 15:33:45
prion
prion
Directory traversal
2021-01-13 16:15:00
redhat
redhat
cve
cve
CVE-2021-3139
2021-01-13 16:15:14
