slurm (SUSE:Linux Enterprise High Performance Computing 15-ESPOS) — known CVEs & security advisories
Known CVE vulnerabilities and GitHub Security Advisories affecting the SUSE:Linux Enterprise High Performance Computing 15-ESPOS package slurm, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVE-2022-29500 — CVSS 8.8 (high): SchedMD Slurm 21.08.x through 20.11.x has Incorrect Access Control that leads to Information Disclosure.
CVE-2022-29501 — CVSS 8.8 (high): SchedMD Slurm 21.08.x through 20.11.x has Incorrect Access Control that leads to Escalation of Privileges and code execution.
CVE-2021-31215 — CVSS 8.8 (high): SchedMD Slurm before 20.02.7 and 20.03.x through 20.11.x before 20.11.7 allows remote code execution as SlurmUser because use of a…
CVE-2020-12693 — CVSS 8.1 (high): Slurm 19.05.x before 19.05.7 and 20.02.x before 20.02.3, in the rare case where Message Aggregation is enabled, allows Authentication…
CVE-2022-31251 — CVSS 6.5 (medium): A Incorrect Default Permissions vulnerability in the packaging of the slurm testsuite of openSUSE Factory allows local attackers with…
CVE-2020-27746 — CVSS 3.7 (low): Slurm before 19.05.8 and 20.x before 20.02.6 exposes Sensitive Information to an Unauthorized Actor because xauth for X11 magic cookies is…