Open-iSCSI rtslib-fb up to and including 2.1.72 has weak permissions for /etc/target/saveconfig.json because shutil.copyfile (instead of shutil.copy) is used, and thus permissions are not preserved.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
rtslib-fb project rtslib-fb |