CVE-2021-45104Cleartext Transmission of Sensitive Info in Htcondor

CWE-319Cleartext Transmission of Sensitive InfoCWE-326Inadequate Encryption Strength5 documents5 sources
Severity
7.4HIGHNVD
EPSS
0.1%
top 69.74%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Wisc Htcondor
Timeline
PublishedApr 6
Latest updateApr 7

Description

An issue was discovered in HTCondor 9.0.x before 9.0.10 and 9.1.x before 9.5.1. An attacker who can capture HTCondor network data can interfere with users' jobs and data.

CVSS vector

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:NExploitability: 2.2 | Impact: 5.2

Affected Packages1 packages

NVDwisc/htcondor8.9.39.0.10+1

🔴Vulnerability Details

3
GHSA
GHSA-6j9j-gvj5-p6jx: An issue was discovered in HTCondor 92022-04-07
OSV
CVE-2021-45104: An issue was discovered in HTCondor 92022-04-06
CVEList
CVE-2021-45104: An issue was discovered in HTCondor 92022-04-06

📋Vendor Advisories

1
Debian
CVE-2021-45104: condor - An issue was discovered in HTCondor 9.0.x before 9.0.10 and 9.1.x before 9.5.1. ...2021
CVE-2021-45104 — Wisc Htcondor vulnerability | cvebase