Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
slurm vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2020-36770
pkg_postinst in the Gentoo ebuild for Slurm up to and including 22.05.3 unnecessarily calls chown to assign root's ownership on files in the live root filesystem. This could be exploited by the slurm user to become the owner of root-owned files.
Gentoo Ebuild For Slurm
NA
CVE-2023-49933
An issue exists in SchedMD Slurm 22.05.x, 23.02.x, and 23.11.x. There is Improper Enforcement of Message Integrity During Transmission in a Communication Channel. This allows malicious users to modify RPC traffic in a way that bypasses message hash checks. The fixed versions are ...
Schedmd Slurm
Schedmd Slurm 23.11
NA
CVE-2023-49934
An issue exists in SchedMD Slurm 23.11.x. There is SQL Injection against the SlurmDBD database. The fixed version is 23.11.1.
Schedmd Slurm 23.11
NA
CVE-2023-49935
An issue exists in SchedMD Slurm 23.02.x and 23.11.x. There is Incorrect Access Control because of a slurmd Message Integrity Bypass. An attacker can reuse root-level authentication tokens during interaction with the slurmd process. This bypasses the RPC message hashes that prote...
Schedmd Slurm
Schedmd Slurm 23.11
NA
CVE-2023-49936
An issue exists in SchedMD Slurm 22.05.x, 23.02.x, and 23.11.x. A NULL pointer dereference leads to denial of service. The fixed versions are 22.05.11, 23.02.7, and 23.11.1.
Schedmd Slurm
Schedmd Slurm 23.11
NA
CVE-2023-49937
An issue exists in SchedMD Slurm 22.05.x, 23.02.x, and 23.11.x. Because of a double free, attackers can cause a denial of service or possibly execute arbitrary code. The fixed versions are 22.05.11, 23.02.7, and 23.11.1.
Schedmd Slurm
Schedmd Slurm 23.11
NA
CVE-2023-49938
An issue exists in SchedMD Slurm 22.05.x and 23.02.x. There is Incorrect Access Control: an attacker can modified their extended group list that is used with the sbcast subsystem, and open files with an unauthorized set of extended groups. The fixed versions are 22.05.11 and 23.0...
Schedmd Slurm
NA
CVE-2023-41914
SchedMD Slurm 23.02.x prior to 23.02.6 and 22.05.x prior to 22.05.10 allows filesystem race conditions for gaining ownership of a file, overwriting a file, or deleting files.
Schedmd Slurm
Fedoraproject Fedora 39
NA
CVE-2023-41915
OpenPMIx PMIx prior to 4.2.6 and 5.0.x prior to 5.0.1 allows malicious users to obtain ownership of arbitrary files via a race condition during execution of library code with UID 0.
Openpmix Openpmix
Openpmix Openpmix 5.0.0
Fedoraproject Fedora 37
Fedoraproject Fedora 38
Fedoraproject Fedora 39
Debian Debian Linux 10.0
Debian Debian Linux 12.0
NA
CVE-2022-31251
A Incorrect Default Permissions vulnerability in the packaging of the slurm testsuite of openSUSE Factory allows local attackers with control over the slurm user to escalate to root. This issue affects: openSUSE Factory slurm versions before 22.05.2-3.3.
Opensuse Factory
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
camera
bypass
CVE-2024-3592
CVE-2024-37383
CVE-2024-24919
CVE-2024-27822
CVE-2024-36788
CVE-2024-36789
man-in-the-middle
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »