Lucene search
K

[SECURITY] [DLA 2984-1] condor security update

🗓️ 19 Apr 2022 12:57:01Reported by DebianType 
debian
 debian
🔗 lists.debian.org👁 38 Views

Jaime Frey discovered a flaw in HTCondor, a distributed workload management system. An attacker need only have READ-level authorization to a vulnerable daemon using the CLAIMTOBE authentication method. This means they are able to run tools like condor_q or condor_status. Many pools do not restrict who can issue READ-level commands, and CLAIMTOBE is allowed for READ-level commands in the default configuration. Thus, it is likely that an attacker could execute this command remotely from an untrusted network, unless prevented by a firewall or other network-level access controls

Related
Packages
ReporterTitlePublishedViews
Family
ATTACKERKB
CVE-2022-26110
6 Apr 202202:15
attackerkb
CNNVD
HTCondor 安全漏洞
6 Apr 202200:00
cnnvd
CVE
CVE-2022-26110
6 Apr 202201:07
cve
Cvelist
CVE-2022-26110
6 Apr 202201:07
cvelist
Debian
[SECURITY] [DSA 5144-1] condor security update
22 May 202220:22
debian
Debian CVE
CVE-2022-26110
6 Apr 202201:07
debiancve
Tenable Nessus
Debian DSA-5144-1 : condor - security update
23 May 202200:00
nessus
Tenable Nessus
Linux Distros Unpatched Vulnerability : CVE-2022-26110
27 Aug 202500:00
nessus
EUVD
EUVD-2022-30678
3 Oct 202520:07
euvd
NVD
CVE-2022-26110
6 Apr 202202:15
nvd
Rows per page
OSOS VersionArchitecturePackagePackage VersionFilename
Debian9anycondor8.4.11~dfsg.1-1+deb9u2condor_8.4.11~dfsg.1-1+deb9u2_any.deb
Debian9anycondor-dbg8.4.11~dfsg.1-1+deb9u2condor-dbg_8.4.11~dfsg.1-1+deb9u2_any.deb
Debian9anycondor-dev8.4.11~dfsg.1-1+deb9u2condor-dev_8.4.11~dfsg.1-1+deb9u2_any.deb
Debian9anycondor-doc8.4.11~dfsg.1-1+deb9u2condor-doc_8.4.11~dfsg.1-1+deb9u2_any.deb
Debian9amd64htcondor8.4.11~dfsg.1-1+deb9u2htcondor_8.4.11~dfsg.1-1+deb9u2_amd64.deb
Debian9arm64htcondor8.4.11~dfsg.1-1+deb9u2htcondor_8.4.11~dfsg.1-1+deb9u2_arm64.deb
Debian9armelhtcondor8.4.11~dfsg.1-1+deb9u2htcondor_8.4.11~dfsg.1-1+deb9u2_armel.deb
Debian9armhfhtcondor8.4.11~dfsg.1-1+deb9u2htcondor_8.4.11~dfsg.1-1+deb9u2_armhf.deb
Debian9i386htcondor8.4.11~dfsg.1-1+deb9u2htcondor_8.4.11~dfsg.1-1+deb9u2_i386.deb
Debian9amd64htcondor-dbg8.4.11~dfsg.1-1+deb9u2htcondor-dbg_8.4.11~dfsg.1-1+deb9u2_amd64.deb
Rows per page

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

19 Apr 2022 12:57Current
7.2High risk
Vulners AI Score7.2
CVSS 26.5
CVSS 3.18.8
EPSS0.01402
38