2 matches found
The vulnerability of the Slurm resource manager, related to improper handling of the SPANK environment variable, allows a perpetrator to escalate their privileges.
The vulnerability of the Slurm resource manager is related to incorrect processing of the SPANK environment variable. Exploiting this vulnerability can allow an attacker to elevate their privileges to the root level when executing Prolog or Epilog scripts...
UBUNTU-CVE-2017-15566
Insecure SPANK environment variable handling exists in SchedMD Slurm before 16.05.11, 17.x before 17.02.9, and 17.11.x before 17.11.0rc2, allowing privilege escalation to root during Prolog or Epilog execution...