OpenZFS Silent Failure to Enforce IPv6 Restrictions in NFS Share Export

OpenZFS Silent Failure to Enforce IPv6 Restrictions in NFS Share Export

CVE-2013-20001 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

An issue was discovered in OpenZFS through 2.0.3. When an NFS share is exported to IPv6 addresses via the sharenfs feature, there is a silent failure to parse the IPv6 address data, and access is allowed to everyone. IPv6 restrictions from the configuration are not applied.

Learn more about our Web Application Penetration Testing UK.