144 matches found
KLA80107 Multiple vulnerabilities in Microsoft Azure
Multiple vulnerabilities were found in Microsoft Azure. Malicious users can exploit these vulnerabilities to execute arbitrary code, gain privileges. Below is a complete list of vulnerabilities: 1. A remote code execution vulnerability in Microsoft High Performance Compute HPC Pack can be exploit...
Microsoft Azure CycleCloud 授权问题漏洞
Microsoft Azure CycleCloud is a suite of enterprise-friendly tools from Microsoft Corporation USA for orchestrating and managing high-performance computing HPC environments on Azure. A security vulnerability exists in Microsoft Azure CycleCloud. An attacker exploiting this vulnerability could...
CVE-2024-42018
An issue was discovered in Atos Eviden SMC xScale before 1.6.6. During initialization of nodes, some configuration parameters are retrieved from management nodes. These parameters embed credentials whose integrity and confidentiality may be important to the security of the HPC configuration...
CVE-2024-42018
An issue was discovered in Atos Eviden SMC xScale before 1.6.6. During initialization of nodes, some configuration parameters are retrieved from management nodes. These parameters embed credentials whose integrity and confidentiality may be important to the security of the HPC configuration...
CVE-2024-42018
Summary: Atos Eviden SMC xScale prior to 1.6.6 is affected. During node initialization, configuration parameters retrieved from management nodes may embed credentials, creating potential exposure of HPC configuration secrets. A mitigation preventing access by unprivileged users exists but does no...
CVE-2024-42018
An issue was discovered in Atos Eviden SMC xScale before 1.6.6. During initialization of nodes, some configuration parameters are retrieved from management nodes. These parameters embed credentials whose integrity and confidentiality may be important to the security of the HPC configuration...
RHSA-2010:0635 Red Hat Security Advisory: Red Hat High Performance Computing (HPC) Solution 5.5
Bulletin has no description...
Intel oneAPI HPC Toolkit Installed (Windows)
Binary data intelhpctoolkitinstalled.nbin...
Command Injection
github.com/cea-hpc/sshproxy is vulnerable to Command Injection. The vulnerability is due to missing input santization when constructing the ssh command string, which allows an authorized user to inject options into the ssh command executed by sshproxy...
sshproxy 命令注入漏洞
sshproxy is an open source proxy program from cea-hpc. A command injection vulnerability exists in sshproxy versions prior to 1.6.3, which stems from the presence of SSH command injection...
CVE-2023-27383
Protection mechanism failure in some IntelR oneAPI HPC Toolkit 2023.1 and IntelRMPI Library software before version 2021.9 may allow a privileged user to potentially enable escalation of privilege via adjacent access...
CVE-2023-27383
CVE-2023-27383 affects Intel® oneAPI HPC Toolkit and Intel® MPI Library. The issue is a protection mechanism failure that may allow a privileged user to escalate privileges via adjacent access. Affected components/versions include the HPC Toolkit before 2023.1 and the MPI Library before 2021.9. T...
CVE-2023-27383
Protection mechanism failure in some IntelR oneAPI HPC Toolkit 2023.1 and IntelRMPI Library software before version 2021.9 may allow a privileged user to potentially enable escalation of privilege via adjacent access...
Intel® oneAPI Toolkit and Component Advisory
Summary: Potential security vulnerabilities in some Intel® oneAPI Toolkits and Component software may allow escalation of privilege. Intel is releasing software updates to mitigate these potential vulnerabilities. Vulnerability Details: CVEID: CVE-2023-24592 Description: Path traversal in the som...
CVE-2023-32182
A Improper Link Resolution Before File Access 'Link Following' vulnerability in SUSE SUSE Linux Enterprise Desktop 15 SP5 postfix, SUSE SUSE Linux Enterprise High Performance Computing 15 SP5 postfix, SUSE openSUSE Leap 15.5 postfix.This issue affects SUSE Linux Enterprise Desktop 15 SP5: before...
SUSE CVE-2023-32182
A Improper Link Resolution Before File Access 'Link Following' vulnerability in SUSE SUSE Linux Enterprise Desktop 15 SP5 postfix, SUSE SUSE Linux Enterprise High Performance Computing 15 SP5 postfix, SUSE openSUSE Leap 15.5 postfix.This issue affects SUSE Linux Enterprise Desktop 15 SP5: before...
Intel® Trace Analyzer and Collector Software Advisory
Summary: Potential security vulnerabilities in some Intel® Trace Analyzer and Collector software may allow escalation of privilege or information disclosure. Intel is releasing software updates to mitigate these potential vulnerabilities. Vulnerability Details: CVEID: CVE-2023-23569 Description:...
SUSE SLES12 Security Update : hdf5, suse-hpc (SUSE-SU-2022:1933-1)
The remote SUSE Linux SLES12 / SLESSAP12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:1933-1 advisory. Security issues fixed: - CVE-2020-10811: Fixed heap-based buffer over-read in the function H5Olayoutdecode located in H5Olayout.c...
CVE-2022-26062
Uncontrolled search path element in the IntelR Trace Analyzer and Collector before version 2021.6 for IntelR oneAPI HPC Toolkit may allow an authenticated user to potentially enable escalation of privilege via local access...
CVE-2022-26052
Uncontrolled search path element in the IntelR MPI Library before version 2021.6 for IntelR oneAPI HPC Toolkit may allow an authenticated user to potentially enable escalation of privilege via local access...