| Max CVSS | 7.6 | Min CVSS | 2.1 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2019-12838 | 7.5 |
SchedMD Slurm 17.11.x, 18.08.0 through 18.08.7, and 19.05.0 allows SQL Injection.
|
06-04-2022 - 18:08 | 11-07-2019 - 13:15 | |
| CVE-2020-12693 | 5.1 |
Slurm 19.05.x before 19.05.7 and 20.02.x before 20.02.3, in the rare case where Message Aggregation is enabled, allows Authentication Bypass via an Alternate Path or Channel. A race condition allows a user to launch a process as an arbitrary user.
|
04-04-2022 - 13:31 | 21-05-2020 - 23:15 | |
| CVE-2019-19728 | 6.0 |
SchedMD Slurm before 18.08.9 and 19.x before 19.05.5 executes srun --uid with incorrect privileges.
|
28-01-2021 - 16:47 | 13-01-2020 - 19:15 | |
| CVE-2019-6438 | 7.5 |
SchedMD Slurm before 17.11.13 and 18.x before 18.08.5 mishandles 32-bit systems.
|
24-08-2020 - 17:37 | 31-01-2019 - 09:29 | |
| CVE-2019-19727 | 2.1 |
SchedMD Slurm before 18.08.9 and 19.x before 19.05.5 has weak slurmdbd.conf permissions.
|
23-01-2020 - 13:38 | 13-01-2020 - 19:15 | |
| CVE-2017-15566 | 7.2 |
Insecure SPANK environment variable handling exists in SchedMD Slurm before 16.05.11, 17.x before 17.02.9, and 17.11.x before 17.11.0rc2, allowing privilege escalation to root during Prolog or Epilog execution.
|
03-10-2019 - 00:03 | 01-11-2017 - 17:29 | |
| CVE-2018-7033 | 7.5 |
SchedMD Slurm before 17.02.10 and 17.11.x before 17.11.5 allows SQL Injection attacks against SlurmDBD.
|
28-02-2019 - 20:20 | 15-03-2018 - 22:29 | |
| CVE-2016-10030 | 7.6 |
The _prolog_error function in slurmd/req.c in Slurm before 15.08.13, 16.x before 16.05.7, and 17.x before 17.02.0-pre4 has a vulnerability in how the slurmd daemon informs users of a Prolog failure on a compute node. That vulnerability could allow a
|
11-01-2017 - 02:59 | 05-01-2017 - 11:59 |