Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
schedmd slurm vulnerabilities and exploits
(subscribe to this query)
676
VMScore
CVE-2016-10030
The _prolog_error function in slurmd/req.c in Slurm prior to 15.08.13, 16.x prior to 16.05.7, and 17.x prior to 17.02.0-pre4 has a vulnerability in how the slurmd daemon informs users of a Prolog failure on a compute node. That vulnerability could allow a user to assume control o...
Schedmd Slurm 17.02.0
Schedmd Slurm 16.05.1
Schedmd Slurm 16.05.2
Schedmd Slurm 16.05.0
Schedmd Slurm 16.05.5
Schedmd Slurm 16.05.6
Schedmd Slurm 16.05.3
Schedmd Slurm 16.05.4
Schedmd Slurm
445
VMScore
CVE-2018-10995
SchedMD Slurm prior to 17.02.11 and 17.1x.x prior to 17.11.7 mishandles user names (aka user_name fields) and group ids (aka gid fields).
Schedmd Slurm 17.11.3.2
Schedmd Slurm 17.11.4.1
Schedmd Slurm 17.11.5.1
Schedmd Slurm 17.11.6.1
Schedmd Slurm 17.11.0.0
Schedmd Slurm 17.11.0.1
Schedmd Slurm 17.11.1.2
Schedmd Slurm 17.11.3.1
Schedmd Slurm
Schedmd Slurm 17.11.1.1
Schedmd Slurm 17.11.2.1
Debian Debian Linux 8.0
Debian Debian Linux 9.0
641
VMScore
CVE-2017-15566
Insecure SPANK environment variable handling exists in SchedMD Slurm prior to 16.05.11, 17.x prior to 17.02.9, and 17.11.x prior to 17.11.0rc2, allowing privilege escalation to root during Prolog or Epilog execution.
Schedmd Slurm 17.11.0
Schedmd Slurm
NA
CVE-2023-49933
An issue exists in SchedMD Slurm 22.05.x, 23.02.x, and 23.11.x. There is Improper Enforcement of Message Integrity During Transmission in a Communication Channel. This allows malicious users to modify RPC traffic in a way that bypasses message hash checks. The fixed versions are ...
Schedmd Slurm
Schedmd Slurm 23.11
NA
CVE-2023-49935
An issue exists in SchedMD Slurm 23.02.x and 23.11.x. There is Incorrect Access Control because of a slurmd Message Integrity Bypass. An attacker can reuse root-level authentication tokens during interaction with the slurmd process. This bypasses the RPC message hashes that prote...
Schedmd Slurm
Schedmd Slurm 23.11
NA
CVE-2023-49936
An issue exists in SchedMD Slurm 22.05.x, 23.02.x, and 23.11.x. A NULL pointer dereference leads to denial of service. The fixed versions are 22.05.11, 23.02.7, and 23.11.1.
Schedmd Slurm
Schedmd Slurm 23.11
NA
CVE-2023-49937
An issue exists in SchedMD Slurm 22.05.x, 23.02.x, and 23.11.x. Because of a double free, attackers can cause a denial of service or possibly execute arbitrary code. The fixed versions are 22.05.11, 23.02.7, and 23.11.1.
Schedmd Slurm
Schedmd Slurm 23.11
NA
CVE-2023-49938
An issue exists in SchedMD Slurm 22.05.x and 23.02.x. There is Incorrect Access Control: an attacker can modified their extended group list that is used with the sbcast subsystem, and open files with an unauthorized set of extended groups. The fixed versions are 22.05.11 and 23.0...
Schedmd Slurm
NA
CVE-2023-49934
An issue exists in SchedMD Slurm 23.11.x. There is SQL Injection against the SlurmDBD database. The fixed version is 23.11.1.
Schedmd Slurm 23.11
668
VMScore
CVE-2018-7033
SchedMD Slurm prior to 17.02.10 and 17.11.x prior to 17.11.5 allows SQL Injection attacks against SlurmDBD.
Schedmd Slurm
Schedmd Slurm 17.11.0.0
Debian Debian Linux 7.0
Debian Debian Linux 8.0
Debian Debian Linux 9.0
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
race condition
CVE-2024-4249
CVE-2024-4244
CVE-2023-20198
TCP
CVE-2022-48648
CVE-2022-48636
CVE-2024-21345
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »