Lucene search

K
cve[email protected]CVE-2013-4319
HistoryOct 11, 2013 - 10:55 p.m.

CVE-2013-4319

2013-10-1122:55:40
CWE-264
web.nvd.nist.gov
25
cve-2013-4319
pbs_mom
torque resource manager
remote authenticated users
arbitrary jobs
nvd

CVSS2

9

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:S/C:C/I:C/A:C

AI Score

6.8

Confidence

Low

EPSS

0.003

Percentile

66.0%

pbs_mom in Terascale Open-Source Resource and Queue Manager (aka TORQUE Resource Manager) 2.5.x, 4.x, and earlier does not properly restrict access by unprivileged ports, which allows remote authenticated users to execute arbitrary jobs by submitting a command.

Affected configurations

NVD
Node
adaptivecomputingtorque_resource_managerRange4.0.2
OR
adaptivecomputingtorque_resource_managerMatch2.0.0
OR
adaptivecomputingtorque_resource_managerMatch2.1.2
OR
adaptivecomputingtorque_resource_managerMatch2.1.3
OR
adaptivecomputingtorque_resource_managerMatch2.1.6
OR
adaptivecomputingtorque_resource_managerMatch2.1.7
OR
adaptivecomputingtorque_resource_managerMatch2.1.8
OR
adaptivecomputingtorque_resource_managerMatch2.1.9
OR
adaptivecomputingtorque_resource_managerMatch2.1.10
OR
adaptivecomputingtorque_resource_managerMatch2.1.11
OR
adaptivecomputingtorque_resource_managerMatch2.2.0
OR
adaptivecomputingtorque_resource_managerMatch2.2.1
OR
adaptivecomputingtorque_resource_managerMatch2.3.0
OR
adaptivecomputingtorque_resource_managerMatch2.3.1
OR
adaptivecomputingtorque_resource_managerMatch2.3.2
OR
adaptivecomputingtorque_resource_managerMatch2.3.3
OR
adaptivecomputingtorque_resource_managerMatch2.3.4
OR
adaptivecomputingtorque_resource_managerMatch2.3.5
OR
adaptivecomputingtorque_resource_managerMatch2.3.6
OR
adaptivecomputingtorque_resource_managerMatch2.3.7
OR
adaptivecomputingtorque_resource_managerMatch2.3.8
OR
adaptivecomputingtorque_resource_managerMatch2.3.9
OR
adaptivecomputingtorque_resource_managerMatch2.3.10
OR
adaptivecomputingtorque_resource_managerMatch2.3.11
OR
adaptivecomputingtorque_resource_managerMatch2.3.12
OR
adaptivecomputingtorque_resource_managerMatch2.3.13
OR
adaptivecomputingtorque_resource_managerMatch2.4.2
OR
adaptivecomputingtorque_resource_managerMatch2.4.3
OR
adaptivecomputingtorque_resource_managerMatch2.4.4
OR
adaptivecomputingtorque_resource_managerMatch2.4.5
OR
adaptivecomputingtorque_resource_managerMatch2.4.6
OR
adaptivecomputingtorque_resource_managerMatch2.4.7
OR
adaptivecomputingtorque_resource_managerMatch2.4.8
OR
adaptivecomputingtorque_resource_managerMatch2.4.9
OR
adaptivecomputingtorque_resource_managerMatch2.4.10
OR
adaptivecomputingtorque_resource_managerMatch2.4.11
OR
adaptivecomputingtorque_resource_managerMatch2.4.12
OR
adaptivecomputingtorque_resource_managerMatch2.4.13
OR
adaptivecomputingtorque_resource_managerMatch2.4.14
OR
adaptivecomputingtorque_resource_managerMatch2.4.15
OR
adaptivecomputingtorque_resource_managerMatch2.4.16
OR
adaptivecomputingtorque_resource_managerMatch2.4.17
OR
adaptivecomputingtorque_resource_managerMatch2.5.0
OR
adaptivecomputingtorque_resource_managerMatch2.5.1
OR
adaptivecomputingtorque_resource_managerMatch2.5.2
OR
adaptivecomputingtorque_resource_managerMatch2.5.3
OR
adaptivecomputingtorque_resource_managerMatch2.5.4
OR
adaptivecomputingtorque_resource_managerMatch2.5.5
OR
adaptivecomputingtorque_resource_managerMatch2.5.6
OR
adaptivecomputingtorque_resource_managerMatch2.5.7
OR
adaptivecomputingtorque_resource_managerMatch2.5.8
OR
adaptivecomputingtorque_resource_managerMatch2.5.9
OR
adaptivecomputingtorque_resource_managerMatch2.5.10
OR
adaptivecomputingtorque_resource_managerMatch2.5.11
OR
adaptivecomputingtorque_resource_managerMatch2.5.12
OR
adaptivecomputingtorque_resource_managerMatch2.5.13
OR
adaptivecomputingtorque_resource_managerMatch3.0.0
OR
adaptivecomputingtorque_resource_managerMatch3.0.1
OR
adaptivecomputingtorque_resource_managerMatch3.0.2
OR
adaptivecomputingtorque_resource_managerMatch3.0.3
OR
adaptivecomputingtorque_resource_managerMatch3.0.4
OR
adaptivecomputingtorque_resource_managerMatch3.0.5
OR
adaptivecomputingtorque_resource_managerMatch3.0.6
OR
adaptivecomputingtorque_resource_managerMatch4.0.0
OR
adaptivecomputingtorque_resource_managerMatch4.1.0
OR
adaptivecomputingtorque_resource_managerMatch4.1.1
OR
adaptivecomputingtorque_resource_managerMatch4.1.2
OR
adaptivecomputingtorque_resource_managerMatch4.1.3
OR
adaptivecomputingtorque_resource_managerMatch4.1.5.1
OR
adaptivecomputingtorque_resource_managerMatch4.1.6
OR
adaptivecomputingtorque_resource_managerMatch4.1.7
OR
adaptivecomputingtorque_resource_managerMatch4.2.2
OR
adaptivecomputingtorque_resource_managerMatch4.2.3
OR
adaptivecomputingtorque_resource_managerMatch4.2.3.1
OR
adaptivecomputingtorque_resource_managerMatch4.2.4.1
OR
adaptivecomputingtorque_resource_managerMatch4.2.5

CVSS2

9

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:S/C:C/I:C/A:C

AI Score

6.8

Confidence

Low

EPSS

0.003

Percentile

66.0%