CVE-2022-29502

Опубликовано: 05 мая 2022

Источник: nvd

CVSS3: 9.8

CVSS2: 7.5

EPSS Низкий

Описание

SchedMD Slurm 21.08.x through 20.11.x has Incorrect Access Control that leads to Escalation of Privileges.

Ссылки

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HXLOI3ERTKMZR2KWNRN7OR5S55VPWENH/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/Y6B7OWVNVCJUDE6VDWGCBUWMRCRETAO3/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YBI4NFDGGMBKWG4EMSZL5UHATDCLPCQW/
https://lists.schedmd.com/pipermail/slurm-announce/
Mailing List
Vendor Advisory
https://www.schedmd.com/news.php
Mitigation
Vendor Advisory
https://www.schedmd.com/news.php?id=260
Mitigation
Patch
Vendor Advisory
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HXLOI3ERTKMZR2KWNRN7OR5S55VPWENH/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/Y6B7OWVNVCJUDE6VDWGCBUWMRCRETAO3/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YBI4NFDGGMBKWG4EMSZL5UHATDCLPCQW/
https://lists.schedmd.com/pipermail/slurm-announce/
Mailing List
Vendor Advisory
https://www.schedmd.com/news.php
Mitigation
Vendor Advisory
https://www.schedmd.com/news.php?id=260
Mitigation
Patch
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:schedmd:slurm:*:*:*:*:*:*:*:*

Версия от 21.08.0 (включая) до 21.08.08 (исключая)

Конфигурация 2

Одно из

cpe:2.3:o:fedoraproject:fedora:34:*:*:*:*:*:*:*

cpe:2.3:o:fedoraproject:fedora:35:*:*:*:*:*:*:*

cpe:2.3:o:fedoraproject:fedora:36:*:*:*:*:*:*:*

EPSS

Процентиль: 71%

0.00679

Низкий

9.8 Critical

CVSS3

7.5 High

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

CVE-2022-29502

CVSS3: 9.8

ubuntu

почти 4 года назад

SchedMD Slurm 21.08.x through 20.11.x has Incorrect Access Control that leads to Escalation of Privileges.

CVE-2022-29502

CVSS3: 9.8

debian

почти 4 года назад

SchedMD Slurm 21.08.x through 20.11.x has Incorrect Access Control tha ...

GHSA-56x4-r7hf-449r

CVSS3: 9.8

github

почти 4 года назад

SchedMD Slurm 21.08.x through 20.11.x has Incorrect Access Control that leads to Escalation of Privileges.

SUSE-RU-2022:4362-1

suse-cvrf

около 3 лет назад

Recommended update for pdsh, slurm_22_05

SUSE-RU-2022:4361-1

suse-cvrf

около 3 лет назад

Recommended update for pdsh, slurm_22_05

EPSS

Процентиль: 71%

0.00679

Низкий

9.8 Critical

CVSS3

7.5 High

CVSS2

Дефекты

NVD-CWE-Other