Lucene search

K

MitreCVELIST:CVE-2023-49938

HistoryDec 14, 2023 - 12:00 a.m.

CVE-2023-49938

2023-12-1400:00:00

mitre

www.cve.org

6

cve-2023-49938

schedmd

slurm

incorrect access control

unauthorized set

fixed versions

AI Score

9.1

Confidence

High

EPSS

0.001

Percentile

25.3%

An issue was discovered in SchedMD Slurm 22.05.x and 23.02.x. There is Incorrect Access Control: an attacker can modified their extended group list that is used with the sbcast subsystem, and open files with an unauthorized set of extended groups. The fixed versions are 22.05.11 and 23.02.7.

References

lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/63FEDDYEE2WK7FHWBHKON3OZVQI56WSQ/

lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/AYQS3LFGC4HE4WCW4L3NAA2I6FRIWMNO/

lists.schedmd.com/pipermail/slurm-announce/2023/000103.html

www.schedmd.com/security-archive.php

AI Score

9.1

Confidence

High

EPSS

0.001

Percentile

25.3%

Related for CVELIST:CVE-2023-49938

prion1 veracode1 debiancve1 nvd1 cve1 osv2 ubuntucve1 nessus21 debian1 openvas9 fedora2 freebsd1 gentoo1