CVE Vulnerabilities

CVE-2022-29501

Published: May 05, 2022 | Modified: Nov 21, 2024
CVSS 3.x
8.8
HIGH
Source:
NVD
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
CVSS 2.x
9 HIGH
AV:N/AC:L/Au:S/C:C/I:C/A:C
RedHat/V2
RedHat/V3
Ubuntu
HIGH
root.io minimus.io echohq.com

SchedMD Slurm 21.08.x through 20.11.x has Incorrect Access Control that leads to Escalation of Privileges and code execution.

Affected Software

Name Vendor Start Version End Version
Slurm Schedmd * 20.11.9 (excluding)
Slurm Schedmd 21.08.0 (including) 21.08.08 (excluding)
Slurm-llnl Ubuntu bionic *
Slurm-llnl Ubuntu esm-apps/bionic *
Slurm-llnl Ubuntu esm-apps/focal *
Slurm-llnl Ubuntu esm-apps/xenial *
Slurm-llnl Ubuntu esm-infra-legacy/trusty *
Slurm-llnl Ubuntu focal *
Slurm-llnl Ubuntu trusty/esm *
Slurm-llnl Ubuntu upstream *
Slurm-wlm Ubuntu esm-apps/jammy *
Slurm-wlm Ubuntu impish *
Slurm-wlm Ubuntu jammy *
Slurm-wlm Ubuntu kinetic *
Slurm-wlm Ubuntu upstream *

References