PT-2022-3411 · Schedmd+3 · Slurm+3

Published

2022-05-05

·

Updated

2026-04-22

·

CVE-2022-29501

CVSS v2.0

9.0

High

VectorAV:N/AC:L/Au:S/C:C/I:C/A:C
Name of the Vulnerable Software and Affected Versions SchedMD Slurm versions 20.11.x through 21.08.x
Description The issue is related to incorrect access control in the Slurm resource management system, which can be exploited to bypass existing security restrictions, leading to escalation of privileges and code execution. This can be exploited by a remote attacker.
Recommendations For SchedMD Slurm versions 20.11.x through 21.08.x, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

Improper Access Control

Weakness Enumeration

CWE-284

Related Identifiers

BDU:2022-04185
CVE-2022-29501
DSA-5166-1
MGASA-2022-0174
OPENSUSE-SU-2022_1666-1
OPENSUSE-SU-2022_1831-1
OPENSUSE-SU-2022_3462-1
OPENSUSE-SU-2022_3468-1
OPENSUSE-SU-2022_3490-1
OPENSUSE-SU-2022_3491-1
OPENSUSE-SU-2022_3535-1
OPENSUSE-SU-2024:12069-1
SUSE-RU-2022:4297-1
SUSE-RU-2022:4348-1
SUSE-RU-2022:4361-1
SUSE-RU-2022:4362-1
SUSE-SU-2022:1666-1
SUSE-SU-2022:1726-1
SUSE-SU-2022:1815-1
SUSE-SU-2022:1831-1
SUSE-SU-2022:3454-1
SUSE-SU-2022:3462-1
SUSE-SU-2022:3468-1
SUSE-SU-2022:3477-1
SUSE-SU-2022:3490-1
SUSE-SU-2022:3491-1
SUSE-SU-2022:3497-1
SUSE-SU-2022:3535-1
SUSE-SU-2022_1666-1
SUSE-SU-2022_1726-1
USN-6458-1
USN-8197-1

Affected Products

Linuxmint
Slurm
Suse
Ubuntu