Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
slurm vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2009-0128
plugins/crypto/openssl/crypto_openssl.c in Simple Linux Utility for Resource Management (aka SLURM or slurm-llnl) does not properly check the return value from the OpenSSL EVP_VerifyFinal function, which allows remote malicious users to bypass validation of the certificate chain ...
Llnl Slurm Nil
NA
CVE-2023-49934
An issue exists in SchedMD Slurm 23.11.x. There is SQL Injection against the SlurmDBD database. The fixed version is 23.11.1.
Schedmd Slurm 23.11
7.5
CVSSv2
CVE-2018-7033
SchedMD Slurm prior to 17.02.10 and 17.11.x prior to 17.11.5 allows SQL Injection attacks against SlurmDBD.
Schedmd Slurm 17.11.0.0
Schedmd Slurm
Debian Debian Linux 8.0
Debian Debian Linux 7.0
Debian Debian Linux 9.0
NA
CVE-2020-36770
pkg_postinst in the Gentoo ebuild for Slurm up to and including 22.05.3 unnecessarily calls chown to assign root's ownership on files in the live root filesystem. This could be exploited by the slurm user to become the owner of root-owned files.
Gentoo Ebuild For Slurm
NA
CVE-2023-41914
SchedMD Slurm 23.02.x prior to 23.02.6 and 22.05.x prior to 22.05.10 allows filesystem race conditions for gaining ownership of a file, overwriting a file, or deleting files.
Schedmd Slurm
Fedoraproject Fedora 39
7.5
CVSSv2
CVE-2019-6438
SchedMD Slurm prior to 17.11.13 and 18.x prior to 18.08.5 mishandles 32-bit systems.
Schedmd Slurm
Opensuse Leap 15.0
2.1
CVSSv2
CVE-2019-19727
SchedMD Slurm prior to 18.08.9 and 19.x prior to 19.05.5 has weak slurmdbd.conf permissions.
Schedmd Slurm
Opensuse Leap 15.1
4.3
CVSSv2
CVE-2020-27746
Slurm prior to 19.05.8 and 20.x prior to 20.02.6 exposes Sensitive Information to an Unauthorized Actor because xauth for X11 magic cookies is affected by a race condition in a read operation on the /proc filesystem.
Schedmd Slurm
Debian Debian Linux 10.0
4
CVSSv2
CVE-2021-43337
SchedMD Slurm 21.08.* prior to 21.08.4 has Incorrect Access Control. On sites using the new AccountingStoreFlags=job_script and/or job_env options, the access control rules in SlurmDBD may permit users to request job scripts and environment files to which they should not have acc...
Schedmd Slurm
Fedoraproject Fedora 34
Fedoraproject Fedora 35
6
CVSSv2
CVE-2019-19728
SchedMD Slurm prior to 18.08.9 and 19.x prior to 19.05.5 executes srun --uid with incorrect privileges.
Schedmd Slurm
Opensuse Leap 15.1
Debian Debian Linux 10.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2018-25103
CVE-2024-36279
CVE-2024-38457
elevation of privilege
CVE-2024-27801
CVE-2024-30103
NULL pointer dereference
CVE-2024-6057
XML injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
NEXT »