27 matches found
CVE-2025-66433
HTCondor Access Point (HTCondor) before 25.3.1 allows an authenticated user to impersonate other users on the local machine by submitting a batch job. The earliest affected version is 24.7.3. Fixes are available in 24.12.14, 25.0.3, and 25.3.1. Affected platforms and versions are corroborated by ...
PT-2025-48384
HTCondor Access Point before 25.3.1 allows an authenticated user to impersonate other users on the local machine by submitting a batch job. This is fixed in 24.12.14, 25.0.3, and 25.3.1. The earliest affected version is 24.7.3...
CVE-2025-66433
HTCondor Access Point before 25.3.1 allows an authenticated user to impersonate other users on the local machine by submitting a batch job. This is fixed in 24.12.14, 25.0.3, and 25.3.1. The earliest affected version is 24.7.3...
CVE-2025-66433
HTCondor Access Point before 25.3.1 allows an authenticated user to impersonate other users on the local machine by submitting a batch job. This is fixed in 24.12.14, 25.0.3, and 25.3.1. The earliest affected version is 24.7.3...
EUVD-2015-3400
Malware in sbrugna...
CVE-2025-0218
When batch jobs are executed by pgAgent, a script is created in a temporary directory and then executed. In versions of pgAgent prior to 4.2.3, an insufficiently seeded random number generator is used when generating the directory name, leading to the possibility for a local attacker to pre-creat...
Hitachi Energy Asset Suite 安全漏洞
Hitachi Energy Asset Suite is a powerful suite from Hitachi, Japan. standardizes and streamlines enterprise asset management workflows to maximize employee productivity and improve asset performance. A security vulnerability exists in Hitachi Energy Asset Suite versions prior to 9.6.3.13 and prio...
SQL injection in GridHelperService.php
Description In line 786, we can see $conditionFilters = $filterField . ' ' . $operator . ' ' . $value;. The three variables joins to a string, and the variables come from the request parameter.Maybe line 793 is vulnerable too. The code comes from prepareAssetListingForGrid function. The function ...
Denial Of Service (DoS)
apostrophe is vulnerable to denial of service DoS. It does not limit a user with a login privileges to initiate multiple batch jobs requests, eventually exhausting available memory by submitting thousands of batch job requests...
[SECURITY] Fedora 20 Update: torque-4.2.10-3.fc20
TORQUE Tera-scale Open-source Resource and QUEue manager is a resource manager providing control over batch jobs and distributed compute nodes. TORQUE is based on OpenPBS version 2.3.12 and incorporates scalability, fault tolerance, and feature extension patches provided by USC, NCSA, OSC, the U....
[SECURITY] Fedora 22 Update: torque-4.2.10-3.fc22
TORQUE Tera-scale Open-source Resource and QUEue manager is a resource manager providing control over batch jobs and distributed compute nodes. TORQUE is based on OpenPBS version 2.3.12 and incorporates scalability, fault tolerance, and feature extension patches provided by USC, NCSA, OSC, the U....
[SECURITY] Fedora 21 Update: torque-4.2.10-3.fc21
TORQUE Tera-scale Open-source Resource and QUEue manager is a resource manager providing control over batch jobs and distributed compute nodes. TORQUE is based on OpenPBS version 2.3.12 and incorporates scalability, fault tolerance, and feature extension patches provided by USC, NCSA, OSC, the U....
CVE-2015-3355
Multiple cross-site request forgery CSRF vulnerabilities in the Batch Jobs module before 7.x-1.2 for Drupal allow remote attackers to hijack the authentication of certain users for requests that 1 delete a batch job record or 2 execute a task via unspecified vectors...
Cross site request forgery (csrf)
Multiple cross-site request forgery CSRF vulnerabilities in the Batch Jobs module before 7.x-1.2 for Drupal allow remote attackers to hijack the authentication of certain users for requests that 1 delete a batch job record or 2 execute a task via unspecified vectors...
CVE-2015-3355
Multiple cross-site request forgery CSRF vulnerabilities in the Batch Jobs module before 7.x-1.2 for Drupal allow remote attackers to hijack the authentication of certain users for requests that 1 delete a batch job record or 2 execute a task via unspecified vectors...
CVE-2015-3355
The CVE-2015-3355 entry concerns CSRF in the Drupal Batch Jobs module (7.x, pre-1.2). Exploitation could allow remote attackers to hijack a user’s session to perform actions such as deleting a batch job or executing a task via crafted requests, as documented by multiple sources including DRUPAL-S...
Multiple Cross-Site Request Forgery Vulnerabilities in Drupal Batch Jobs Module
Drupal is a free and open source content management system developed in PHP. Multiple cross-site request forgery vulnerabilities exist in the Drupal Batch Jobs module, which can be exploited by an attacker to perform certain unauthorized actions and gain access to affected applications...
SA-CONTRIB-2015-008 - Batch Jobs - Cross Site Request Forgery (CSRF)
The Batch Jobs project is a scalable way to execute a list of tasks. Links that take actions on batch jobs are not protected from Cross Site Request Forgery CSRF. A malicious individual could cause a user that has permission to access a particular batch job or an administrator to delete the recor...
[SECURITY] Fedora 19 Update: torque-3.0.4-5.fc19
TORQUE Tera-scale Open-source Resource and QUEue manager is a resource manager providing control over batch jobs and distributed compute nodes. TORQUE is based on OpenPBS version 2.3.12 and incorporates scalability, fault tolerance, and feature extension patches provided by USC, NCSA, OSC, the U....
[SECURITY] Fedora 21 Update: torque-4.2.8-1.fc21
TORQUE Tera-scale Open-source Resource and QUEue manager is a resource manager providing control over batch jobs and distributed compute nodes. TORQUE is based on OpenPBS version 2.3.12 and incorporates scalability, fault tolerance, and feature extension patches provided by USC, NCSA, OSC, the U....