Vulnerabilities > Schedmd > Slurm > 16.05.8

DATE CVE VULNERABILITY TITLE RISK
2017-11-01 CVE-2017-15566 Untrusted Search Path vulnerability in Schedmd Slurm
Insecure SPANK environment variable handling exists in SchedMD Slurm before 16.05.11, 17.x before 17.02.9, and 17.11.x before 17.11.0rc2, allowing privilege escalation to root during Prolog or Epilog execution.
local
low complexity
schedmd CWE-426
7.8