CVE-2014-8126
published 2020-01-31CVE-2014-8126: The scheduler in HTCondor before 8.2.6 allows remote authenticated users to execute arbitrary code.
high8.8CVSS 3.1
AVNACLPRLUINSUCHIHAH
The scheduler in HTCondor before 8.2.6 allows remote authenticated users to execute arbitrary code.
Affected
7 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| condor_project | condor | >= 0 < 8.2.3~dfsg.1-6 | 8.2.3~dfsg.1-6 |
| condor_project | condor | >= 0 < 8.2.3~dfsg.1-6 | 8.2.3~dfsg.1-6 |
| condor_project | condor | >= 0 < 8.0.5~dfsg.1-1ubuntu1+esm1 | 8.0.5~dfsg.1-1ubuntu1+esm1 |
| condor_project | condor | >= 0 < 8.4.2~dfsg.1-1ubuntu0.1~esm1 | 8.4.2~dfsg.1-1ubuntu0.1~esm1 |
| debian | condor | < condor 8.2.3~dfsg.1-6 (forky) | condor 8.2.3~dfsg.1-6 (forky) |
| htcondor | htcondor | — | — |
| wisc | htcondor | < 8.2.6 | 8.2.6 |
CVSS provenance
nvdv3.18.8HIGHCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
osv8.8HIGH