CVE-2025-30093
published 2025-03-27CVE-2025-30093: HTCondor 23.0.x before 23.0.22, 23.10.x before 23.10.22, 24.0.x before 24.0.6, and 24.6.x before 24.6.1 allows authenticated attackers to bypass authorization…
high8.1CVSS 3.1
AVNACLPRLUINSUCHIHAN
HTCondor 23.0.x before 23.0.22, 23.10.x before 23.10.22, 24.0.x before 24.0.6, and 24.6.x before 24.6.1 allows authenticated attackers to bypass authorization restrictions.
Affected
6 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| condor_project | condor | >= 0 < 23.9.6+dfsg-2 | 23.9.6+dfsg-2 |
| condor_project | condor | >= 0 < 23.9.6+dfsg-2 | 23.9.6+dfsg-2 |
| debian | condor | < condor 23.9.6+dfsg-2 (forky) | condor 23.9.6+dfsg-2 (forky) |
| wisc | htcondor | >= 23.0.0 < 23.0.22 | 23.0.22 |
| wisc | htcondor | >= 23.10.1 < 23.10.22 | 23.10.22 |
| wisc | htcondor | >= 24.0.1 < 24.0.6 | 24.0.6 |
CVSS provenance
nvdv3.18.1HIGHCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
osv8.1HIGH