Vulnerabilities > Schedmd > Slurm > Critical

DATE CVE VULNERABILITY TITLE RISK
2023-12-14 CVE-2023-49937 Double Free vulnerability in Schedmd Slurm
An issue was discovered in SchedMD Slurm 22.05.x, 23.02.x, and 23.11.x.
network
low complexity
schedmd CWE-415
critical
 9.8
9.8
2023-12-14 CVE-2023-49934 SQL Injection vulnerability in Schedmd Slurm 23.11
An issue was discovered in SchedMD Slurm 23.11.x.
network
low complexity
schedmd CWE-89
critical
 9.8
9.8
2022-05-05 CVE-2022-29502 SchedMD Slurm 21.08.x through 20.11.x has Incorrect Access Control that leads to Escalation of Privileges.
network
low complexity
schedmd fedoraproject
critical
 9.8
9.8
2020-11-27 CVE-2020-27745 Classic Buffer Overflow vulnerability in multiple products
Slurm before 19.05.8 and 20.x before 20.02.6 has an RPC Buffer Overflow in the PMIx MPI plugin.
network
low complexity
schedmd debian CWE-120
critical
 9.8
9.8
2019-07-11 CVE-2019-12838 SQL Injection vulnerability in multiple products
SchedMD Slurm 17.11.x, 18.08.0 through 18.08.7, and 19.05.0 allows SQL Injection.
network
low complexity
schedmd debian fedoraproject opensuse CWE-89
critical
 9.8
9.8
2019-01-31 CVE-2019-6438 SchedMD Slurm before 17.11.13 and 18.x before 18.08.5 mishandles 32-bit systems.
network
low complexity
schedmd opensuse
critical
 9.8
9.8
2018-03-15 CVE-2018-7033 SQL Injection vulnerability in multiple products
SchedMD Slurm before 17.02.10 and 17.11.x before 17.11.5 allows SQL Injection attacks against SlurmDBD.
network
low complexity
schedmd debian CWE-89
critical
 9.8
9.8