cbcvebase.
CVE-2017-17840
published 2017-12-27

CVE-2017-17840: An issue was discovered in Open-iSCSI through 2.0.875. A local attacker can cause the iscsiuio server to abort or potentially execute code by sending messages…

PriorityP336high7.8CVSS 3.0
AVLACLPRLUINSUCHIHAH
EPSS
0.45%
35.5th percentile
An issue was discovered in Open-iSCSI through 2.0.875. A local attacker can cause the iscsiuio server to abort or potentially execute code by sending messages with incorrect lengths, which (due to lack of checking) can lead to buffer overflows, and result in aborts (with overflow checking enabled) or code execution. The process_iscsid_broadcast function in iscsiuio/src/unix/iscsid_ipc.c does not validate the payload length before a write operation.

Affected

6 ranges
VendorProductVersion rangeFixed in
debianopen-iscsi< open-iscsi 2.0.874-5 (bookworm)open-iscsi 2.0.874-5 (bookworm)
open-iscsi_projectopen-iscsi<= 2.0.875
open-iscsi_projectopen-iscsi>= 0 < 2.0.874-52.0.874-5
open-iscsi_projectopen-iscsi>= 0 < 2.0.874-52.0.874-5
open-iscsi_projectopen-iscsi>= 0 < 2.0.874-52.0.874-5
open-iscsi_projectopen-iscsi>= 0 < 2.0.874-52.0.874-5

CVSS provenance

nvdv3.07.8HIGHCVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
nvdv2.04.6MEDIUMAV:L/AC:L/Au:N/C:P/I:P/A:P
osv7.8HIGH
vendor_debian7.8HIGH
vendor_redhat7.8HIGH
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.