Slurm@23.11 Security Vulnerabilities and Issues — Slurm@23.11 CVE List

Lucene search

SchedmdSlurm23.11

5 matches found

CVE•added 2023/12/14 5:15 a.m.•75 views

CVE-2023-49937

An issue was discovered in SchedMD Slurm 22.05.x, 23.02.x, and 23.11.x. Because of a double free, attackers can cause a denial of service or possibly execute arbitrary code. The fixed versions are 22.05.11, 23.02.7, and 23.11.1.

9.8CVSS9.6AI score0.00264EPSS

CVE•added 2023/12/14 5:15 a.m.•71 views

CVE-2023-49933

An issue was discovered in SchedMD Slurm 22.05.x, 23.02.x, and 23.11.x. There is Improper Enforcement of Message Integrity During Transmission in a Communication Channel. This allows attackers to modify RPC traffic in a way that bypasses message hash checks. The fixed versions are 22.05.11, 23.02.7...

7.5CVSS8.2AI score0.00041EPSS

CVE•added 2023/12/14 5:15 a.m.•65 views

CVE-2023-49936

An issue was discovered in SchedMD Slurm 22.05.x, 23.02.x, and 23.11.x. A NULL pointer dereference leads to denial of service. The fixed versions are 22.05.11, 23.02.7, and 23.11.1.

7.5CVSS8.1AI score0.00168EPSS

CVE•added 2023/12/14 5:15 a.m.•53 views

CVE-2023-49935

An issue was discovered in SchedMD Slurm 23.02.x and 23.11.x. There is Incorrect Access Control because of a slurmd Message Integrity Bypass. An attacker can reuse root-level authentication tokens during interaction with the slurmd process. This bypasses the RPC message hashes that protect against ...

8.8CVSS9.1AI score0.00036EPSS

CVE•added 2023/12/14 5:15 a.m.•50 views

CVE-2023-49934

An issue was discovered in SchedMD Slurm 23.11.x. There is SQL Injection against the SlurmDBD database. The fixed version is 23.11.1.

9.8CVSS9.7AI score0.00141EPSS