Vulnerabilities > Schedmd

DATE	CVE	VULNERABILITY TITLE	RISK
2021-11-17	CVE-2021-43337	SchedMD Slurm 21.08.* before 21.08.4 has Incorrect Access Control. network low complexity schedmd fedoraproject	6.5
2021-05-13	CVE-2021-31215	SchedMD Slurm before 20.02.7 and 20.03.x through 20.11.x before 20.11.7 allows remote code execution as SlurmUser because use of a PrologSlurmctld or EpilogSlurmctld script leads to environment mishandling. network low complexity schedmd fedoraproject debian	8.8
2020-11-27	CVE-2020-27746	Race Condition vulnerability in multiple products Slurm before 19.05.8 and 20.x before 20.02.6 exposes Sensitive Information to an Unauthorized Actor because xauth for X11 magic cookies is affected by a race condition in a read operation on the /proc filesystem. network high complexity schedmd debian CWE-362	3.7
2020-11-27	CVE-2020-27745	Classic Buffer Overflow vulnerability in multiple products Slurm before 19.05.8 and 20.x before 20.02.6 has an RPC Buffer Overflow in the PMIx MPI plugin. network low complexity schedmd debian CWE-120 critical	9.8
2020-05-21	CVE-2020-12693	Slurm 19.05.x before 19.05.7 and 20.02.x before 20.02.3, in the rare case where Message Aggregation is enabled, allows Authentication Bypass via an Alternate Path or Channel. network high complexity schedmd fedoraproject opensuse debian	8.1
2020-01-13	CVE-2019-19728	Improper Privilege Management vulnerability in multiple products SchedMD Slurm before 18.08.9 and 19.x before 19.05.5 executes srun --uid with incorrect privileges. network high complexity schedmd opensuse debian CWE-269	7.5
2020-01-13	CVE-2019-19727	Incorrect Permission Assignment for Critical Resource vulnerability in multiple products SchedMD Slurm before 18.08.9 and 19.x before 19.05.5 has weak slurmdbd.conf permissions. local low complexity schedmd opensuse CWE-732	5.5
2019-07-11	CVE-2019-12838	SQL Injection vulnerability in multiple products SchedMD Slurm 17.11.x, 18.08.0 through 18.08.7, and 19.05.0 allows SQL Injection. network low complexity schedmd debian fedoraproject opensuse CWE-89 critical	9.8
2019-01-31	CVE-2019-6438	SchedMD Slurm before 17.11.13 and 18.x before 18.08.5 mishandles 32-bit systems. network low complexity schedmd opensuse critical	9.8
2018-05-30	CVE-2018-10995	Improper Input Validation vulnerability in multiple products SchedMD Slurm before 17.02.11 and 17.1x.x before 17.11.7 mishandles user names (aka user_name fields) and group ids (aka gid fields). network low complexity schedmd debian CWE-20	5.3

Vulnerabilities > Schedmd {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Schedmd"}]}

Vulnerabilities > Schedmd