Slurm@23.02 Security Vulnerabilities and Issues — Slurm@23.02 CVE List

Lucene search

SchedmdSlurm23.02

5 matches found

CVE•added 2023/11/03 5:15 a.m.•114 views

CVE-2023-41914

SchedMD Slurm 23.02.x before 23.02.6 and 22.05.x before 22.05.10 allows filesystem race conditions for gaining ownership of a file, overwriting a file, or deleting files.

7CVSS6.8AI score0.00061EPSS

CVE•added 2023/12/14 5:15 a.m.•78 views

CVE-2023-49937

An issue was discovered in SchedMD Slurm 22.05.x, 23.02.x, and 23.11.x. Because of a double free, attackers can cause a denial of service or possibly execute arbitrary code. The fixed versions are 22.05.11, 23.02.7, and 23.11.1.

9.8CVSS9.6AI score0.00264EPSS

CVE•added 2023/12/14 5:15 a.m.•75 views

CVE-2023-49933

An issue was discovered in SchedMD Slurm 22.05.x, 23.02.x, and 23.11.x. There is Improper Enforcement of Message Integrity During Transmission in a Communication Channel. This allows attackers to modify RPC traffic in a way that bypasses message hash checks. The fixed versions are 22.05.11, 23.02.7...

7.5CVSS8.2AI score0.00041EPSS

CVE•added 2023/12/14 5:15 a.m.•68 views

CVE-2023-49936

An issue was discovered in SchedMD Slurm 22.05.x, 23.02.x, and 23.11.x. A NULL pointer dereference leads to denial of service. The fixed versions are 22.05.11, 23.02.7, and 23.11.1.

7.5CVSS8.1AI score0.00168EPSS

CVE•added 2023/12/14 5:15 a.m.•62 views

CVE-2023-49935

An issue was discovered in SchedMD Slurm 23.02.x and 23.11.x. There is Incorrect Access Control because of a slurmd Message Integrity Bypass. An attacker can reuse root-level authentication tokens during interaction with the slurmd process. This bypasses the RPC message hashes that protect against ...

8.8CVSS9.1AI score0.00036EPSS