PT-2022-12305 · Htcondor · Htcondor

Brian Bockelman

Published

2022-04-06

Updated

2022-04-13

CVE-2021-45103

CVSS v3.1

8.1

High

Vector

AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

Name of the Vulnerable Software and Affected Versions HTCondor versions 9.0.x through 9.0.9 HTCondor versions 9.1.x through 9.4.x

Description An issue was discovered that allows an attacker to access files stored in S3 cloud storage that a user has asked HTCondor to transfer.

Recommendations For HTCondor versions 9.0.x through 9.0.9, update to version 9.0.10 or later. For HTCondor versions 9.1.x through 9.4.x, update to version 9.5.1 or later.

Fix

Insertion into Log File

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-532

Related Identifiers

CVE-2021-45103

OPENSUSE-SU-2024:11976-1

Affected Products

Htcondor

PT-2022-12305 · Htcondor · Htcondor

CVE-2021-45103

Weakness Enumeration

Related Identifiers

Affected Products

References · 9