Описание
SchedMD Slurm before 17.02.11 and 17.1x.x before 17.11.7 mishandles user names (aka user_name fields) and group ids (aka gid fields).
Ссылки
- Mailing ListThird Party Advisory
- Mailing ListThird Party Advisory
- Vendor Advisory
- Third Party Advisory
- Vendor Advisory
- Mailing ListThird Party Advisory
- Mailing ListThird Party Advisory
- Vendor Advisory
- Third Party Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 17.02.10.1 (включая)
Одно из
cpe:2.3:a:schedmd:slurm:*:*:*:*:*:*:*:*
cpe:2.3:a:schedmd:slurm:17.11.0.0:pre1:*:*:*:*:*:*
cpe:2.3:a:schedmd:slurm:17.11.0.0:pre2:*:*:*:*:*:*
cpe:2.3:a:schedmd:slurm:17.11.0.0:rc1:*:*:*:*:*:*
cpe:2.3:a:schedmd:slurm:17.11.0.0:rc2:*:*:*:*:*:*
cpe:2.3:a:schedmd:slurm:17.11.0.0:rc3:*:*:*:*:*:*
cpe:2.3:a:schedmd:slurm:17.11.0.1:*:*:*:*:*:*:*
cpe:2.3:a:schedmd:slurm:17.11.1.1:*:*:*:*:*:*:*
cpe:2.3:a:schedmd:slurm:17.11.1.2:*:*:*:*:*:*:*
cpe:2.3:a:schedmd:slurm:17.11.2.1:*:*:*:*:*:*:*
cpe:2.3:a:schedmd:slurm:17.11.3.1:*:*:*:*:*:*:*
cpe:2.3:a:schedmd:slurm:17.11.3.2:*:*:*:*:*:*:*
cpe:2.3:a:schedmd:slurm:17.11.4.1:*:*:*:*:*:*:*
cpe:2.3:a:schedmd:slurm:17.11.5.1:*:*:*:*:*:*:*
cpe:2.3:a:schedmd:slurm:17.11.6.1:*:*:*:*:*:*:*
Конфигурация 2
Одно из
cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
EPSS
Процентиль: 64%
0.0046
Низкий
5.3 Medium
CVSS3
5 Medium
CVSS2
Дефекты
CWE-20
EPSS
Процентиль: 64%
0.0046
Низкий
5.3 Medium
CVSS3
5 Medium
CVSS2
Дефекты
CWE-20