Csc-Swesters

**Name of the Vulnerable Software and Affected Versions:** Open OnDemand versions prior to 3.1.14 Open OnDemand versions prior to 4.0.6 **Description:** Open OnDemand, an open-source HPC portal, is susceptible to a denial-of-service (DoS) condition. By interacting with the shell application and generating numerous errors, users can flood logs, creating excessively large log files. This log flooding can lead to a DoS attack against the Open OnDemand system. **Recommendations:** Update Open OnDemand to version 3.1.14 or later. Update Open OnDemand to version 4.0.6 or later.