CVE-2021-45102
published 2021-12-16CVE-2021-45102: An issue was discovered in HTCondor 9.0.x before 9.0.4 and 9.1.x before 9.1.2. When authenticating to an HTCondor daemon using a SciToken, a user may be…
high8.8CVSS 3.1
AVNACLPRLUINSUCHIHAH
An issue was discovered in HTCondor 9.0.x before 9.0.4 and 9.1.x before 9.1.2. When authenticating to an HTCondor daemon using a SciToken, a user may be granted authorizations beyond what the token should allow.
Affected
5 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | condor | — | — |
| wisc | htcondor | — | — |
| wisc | htcondor | — | — |
| wisc | htcondor | — | — |
| wisc | htcondor | — | — |
CVSS provenance
nvdv3.18.8HIGHCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
osv8.8HIGH