VUMETRIC
CYBER PORTAL
Dashboard
Security News
Latest Vulnerabilities
Browse Vulnerabilities
by Vendors
by Products
by Categories
Weekly Reports
Vulnerabilities
>
Schedmd
>
Slurm
> High
Exclude new CVEs:
DATE
CVE
VULNERABILITY TITLE
RISK
2023-12-14
CVE-2023-49933
Improper Enforcement of Message Integrity During Transmission in a Communication Channel vulnerability in Schedmd Slurm
An issue was discovered in SchedMD Slurm 22.05.x, 23.02.x, and 23.11.x.
network
low complexity
schedmd
CWE-924
7.5
7.5
2023-12-14
CVE-2023-49935
Insufficient Session Expiration vulnerability in Schedmd Slurm
An issue was discovered in SchedMD Slurm 23.02.x and 23.11.x.
network
low complexity
schedmd
CWE-613
8.8
8.8
2023-12-14
CVE-2023-49936
NULL Pointer Dereference vulnerability in Schedmd Slurm
An issue was discovered in SchedMD Slurm 22.05.x, 23.02.x, and 23.11.x.
network
low complexity
schedmd
CWE-476
7.5
7.5
2023-12-14
CVE-2023-49938
Unspecified vulnerability in Schedmd Slurm
An issue was discovered in SchedMD Slurm 22.05.x and 23.02.x.
network
low complexity
schedmd
8.2
8.2
2023-11-03
CVE-2023-41914
Race Condition vulnerability in multiple products
SchedMD Slurm 23.02.x before 23.02.6 and 22.05.x before 22.05.10 allows filesystem race conditions for gaining ownership of a file, overwriting a file, or deleting files.
local
high complexity
schedmd
fedoraproject
CWE-362
7.0
7.0
2022-05-05
CVE-2022-29500
SchedMD Slurm 21.08.x through 20.11.x has Incorrect Access Control that leads to Information Disclosure.
network
low complexity
schedmd
fedoraproject
debian
8.8
8.8
2022-05-05
CVE-2022-29501
SchedMD Slurm 21.08.x through 20.11.x has Incorrect Access Control that leads to Escalation of Privileges and code execution.
network
low complexity
schedmd
fedoraproject
debian
8.8
8.8
2021-05-13
CVE-2021-31215
SchedMD Slurm before 20.02.7 and 20.03.x through 20.11.x before 20.11.7 allows remote code execution as SlurmUser because use of a PrologSlurmctld or EpilogSlurmctld script leads to environment mishandling.
network
low complexity
schedmd
fedoraproject
debian
8.8
8.8
2020-05-21
CVE-2020-12693
Slurm 19.05.x before 19.05.7 and 20.02.x before 20.02.3, in the rare case where Message Aggregation is enabled, allows Authentication Bypass via an Alternate Path or Channel.
network
high complexity
schedmd
fedoraproject
opensuse
debian
8.1
8.1
2019-01-31
CVE-2019-6438
SchedMD Slurm before 17.11.13 and 18.x before 18.08.5 mishandles 32-bit systems.
network
low complexity
schedmd
opensuse
7.5
7.5
«
1
(current)
2
»
Next