CVE-2023-41914Race Condition in Slurm

CWE-362Race Condition5 documents5 sources
Severity
7.0HIGHNVD
EPSS
0.1%
top 81.11%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Schedmd SlurmFedoraproject Fedora
Timeline
PublishedNov 3

Description

SchedMD Slurm 23.02.x before 23.02.6 and 22.05.x before 22.05.10 allows filesystem race conditions for gaining ownership of a file, overwriting a file, or deleting files.

CVSS vector

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 1.0 | Impact: 5.9

Affected Packages1 packages

NVDschedmd/slurm22.0522.05.10+1

Also affects: Fedora 39

🔴Vulnerability Details

3
GHSA
GHSA-v8jm-8mp9-5962: SchedMD Slurm 232023-11-03
CVEList
CVE-2023-41914: SchedMD Slurm 232023-11-03
OSV
CVE-2023-41914: SchedMD Slurm 232023-11-03

📋Vendor Advisories

1
Debian
CVE-2023-41914: slurm-wlm - SchedMD Slurm 23.02.x before 23.02.6 and 22.05.x before 22.05.10 allows filesyst...2023
CVE-2023-41914 — Race Condition in Schedmd Slurm | cvebase