Insecure SPANK environment variable handling exists in SchedMD Slurm prior to 16.05.11, 17.x prior to 17.02.9, and 17.11.x prior to 17.11.0rc2, allowing privilege escalation to root during Prolog or Epilog execution.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
schedmd slurm 17.11.0 |
||
schedmd slurm |