PT-2022-3405 · Schedmd+3 · Slurm+3

Published

2022-05-05

·

Updated

2023-11-02

·

CVE-2022-29500

CVSS v2.0

9.0

High

VectorAV:N/AC:L/Au:S/C:C/I:C/A:C
Name of the Vulnerable Software and Affected Versions SchedMD Slurm versions 20.11.x through 21.08.x
Description The issue is related to incorrect access control in the Slurm resource management system, which is associated with deficiencies in the authentication procedure. This can allow a remote attacker to bypass existing security restrictions, leading to information disclosure.
Recommendations For SchedMD Slurm versions 20.11.x through 21.08.x, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

Improper Authentication

Weakness Enumeration

CWE-287

Related Identifiers

BDU:2022-04179
CVE-2022-29500
DSA-5166-1
MGASA-2022-0174
OPENSUSE-SU-2022_1666-1
OPENSUSE-SU-2022_1831-1
OPENSUSE-SU-2022_3462-1
OPENSUSE-SU-2022_3468-1
OPENSUSE-SU-2022_3490-1
OPENSUSE-SU-2022_3491-1
OPENSUSE-SU-2022_3535-1
OPENSUSE-SU-2024:12050-1
SUSE-RU-2022:4297-1
SUSE-RU-2022:4348-1
SUSE-RU-2022:4361-1
SUSE-RU-2022:4362-1
SUSE-RU-2023:4332-1
SUSE-RU-2023:4333-1
SUSE-RU-2023:4334-1
SUSE-RU-2023:4335-1
SUSE-RU-2023:4336-1
SUSE-SU-2022:1666-1
SUSE-SU-2022:1726-1
SUSE-SU-2022:1815-1
SUSE-SU-2022:1831-1
SUSE-SU-2022:3454-1
SUSE-SU-2022:3462-1
SUSE-SU-2022:3468-1
SUSE-SU-2022:3477-1
SUSE-SU-2022:3490-1
SUSE-SU-2022:3491-1
SUSE-SU-2022:3497-1
SUSE-SU-2022:3535-1
SUSE-SU-2022_1666-1
SUSE-SU-2022_1726-1
SUSE-SU-2022_1815-1
SUSE-SU-2022_1831-1
SUSE-SU-2022_3454-1
SUSE-SU-2022_3462-1
SUSE-SU-2022_3468-1
SUSE-SU-2022_3477-1
SUSE-SU-2022_3490-1
SUSE-SU-2022_3491-1
SUSE-SU-2022_3497-1
SUSE-SU-2022_3535-1
USN-6458-1

Affected Products

Linuxmint
Slurm
Suse
Ubuntu