CVE-2025-53636

CVSS v3.1

5.4

Medium

Vector

AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L

Name of the Vulnerable Software and Affected Versions: Open OnDemand versions prior to 3.1.14 Open OnDemand versions prior to 4.0.6

Description: Open OnDemand, an open-source HPC portal, is susceptible to a denial-of-service (DoS) condition. By interacting with the shell application and generating numerous errors, users can flood logs, creating excessively large log files. This log flooding can lead to a DoS attack against the Open OnDemand system.

Recommendations: Update Open OnDemand to version 3.1.14 or later. Update Open OnDemand to version 4.0.6 or later.

Exploit

Fix

DoS

Resource Exhaustion

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-779CWE-400

Related Identifiers

CVE-2025-53636

GHSA-X5XV-FW37-V524

Affected Products

Open Ondemand

CVE-2025-53636

Weakness Enumeration

Related Identifiers

Affected Products

References · 10