Known Vulnerabilities for products from Schedmd
Listed below are 20 of the newest known vulnerabilities associated with the vendor "Schedmd".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2023-49938 json | 8.2 - HIGH | 2023-12-14 | 2024-01-03 | |
| CVE-2023-49937 json | 9.8 - CRITICAL | 2023-12-14 | 2024-01-03 | |
| CVE-2023-49936 json | 7.5 - HIGH | 2023-12-14 | 2024-01-03 | |
| CVE-2023-49935 json | 8.8 - HIGH | 2023-12-14 | 2024-01-03 | |
| CVE-2023-49934 json | 9.8 - CRITICAL | 2023-12-14 | 2024-01-03 | |
| CVE-2023-49933 json | 7.5 - HIGH | 2023-12-14 | 2024-01-03 | |
| CVE-2023-41914 json | SchedMD Slurm 23.02.x before 23.02.6 and 22.05.x before 22.05.10 allows filesystem race conditions for gaining ownership of a... | 7 - HIGH | 2023-11-03 | 2023-11-09 |
| CVE-2022-29502 json | SchedMD Slurm 21.08.x through 20.11.x has Incorrect Access Control that leads to Escalation of Privileges. | 9.8 - CRITICAL | 2022-05-05 | 2023-11-07 |
| CVE-2022-29501 json | SchedMD Slurm 21.08.x through 20.11.x has Incorrect Access Control that leads to Escalation of Privileges and code execution. | 8.8 - HIGH | 2022-05-05 | 2023-11-07 |
| CVE-2022-29500 json | SchedMD Slurm 21.08.x through 20.11.x has Incorrect Access Control that leads to Information Disclosure. | 8.8 - HIGH | 2022-05-05 | 2023-11-07 |
| CVE-2021-43337 json | SchedMD Slurm 21.08.* before 21.08.4 has Incorrect Access Control. On sites using the new AccountingStoreFlags=job_script and... | 6.5 - MEDIUM | 2021-11-17 | 2023-11-07 |
| CVE-2021-31215 json | SchedMD Slurm before 20.02.7 and 20.03.x through 20.11.x before 20.11.7 allows remote code execution as SlurmUser because use... | 8.8 - HIGH | 2021-05-13 | 2023-11-07 |
| CVE-2020-27746 json | Slurm before 19.05.8 and 20.x before 20.02.6 exposes Sensitive Information to an Unauthorized Actor because xauth for X11 mag... | 3.7 - LOW | 2020-11-27 | 2022-05-03 |
| CVE-2020-27745 json | Slurm before 19.05.8 and 20.x before 20.02.6 has an RPC Buffer Overflow in the PMIx MPI plugin. | 9.8 - CRITICAL | 2020-11-27 | 2022-03-29 |
| CVE-2020-12693 json | Slurm 19.05.x before 19.05.7 and 20.02.x before 20.02.3, in the rare case where Message Aggregation is enabled, allows Authen... | 8.1 - HIGH | 2020-05-21 | 2023-11-07 |
| CVE-2019-19728 json | SchedMD Slurm before 18.08.9 and 19.x before 19.05.5 executes srun --uid with incorrect privileges. | 7.5 - HIGH | 2020-01-13 | 2021-01-28 |
| CVE-2019-19727 json | SchedMD Slurm before 18.08.9 and 19.x before 19.05.5 has weak slurmdbd.conf permissions. | 5.5 - MEDIUM | 2020-01-13 | 2020-01-23 |
| CVE-2019-12838 json | SchedMD Slurm 17.11.x, 18.08.0 through 18.08.7, and 19.05.0 allows SQL Injection. | 9.8 - CRITICAL | 2019-07-11 | 2023-11-07 |
| CVE-2019-6438 json | SchedMD Slurm before 17.11.13 and 18.x before 18.08.5 mishandles 32-bit systems. | 9.8 - CRITICAL | 2019-01-31 | 2020-08-24 |
| CVE-2018-10995 json | SchedMD Slurm before 17.02.11 and 17.1x.x before 17.11.7 mishandles user names (aka user_name fields) and group ids (aka gid ... | 5.3 - MEDIUM | 2018-05-30 | 2019-10-03 |
Known software with vulnerabilities from Schedmd
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Schedmd | Slurm | 1.0.0.1 |