CVE-2022-31251
published 2022-09-07CVE-2022-31251: A Incorrect Default Permissions vulnerability in the packaging of the slurm testsuite of openSUSE Factory allows local attackers with control over the slurm…
medium6.3CVSS 3.1
AVLACHPRLUINSUCHINAH
A Incorrect Default Permissions vulnerability in the packaging of the slurm testsuite of openSUSE Factory allows local attackers with control over the slurm user to escalate to root. This issue affects: openSUSE Factory slurm versions prior to 22.05.2-3.3.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | slurm-wlm | — | — |
| opensuse | factory | < 22.05.2-3.3 | 22.05.2-3.3 |
| suse | opensuse_factory | >= slurm < 22.05.2-3.3 | 22.05.2-3.3 |
CVSS provenance
nvdv3.16.3MEDIUMCVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:H
osv6.3MEDIUM