← Back

CVE-2023-49938

nvd nist
Published: Dec 14, 2023Modified: Nov 4, 2025

JSON object

Loading...
8.2
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N
Exploitability: 3.9 / Impact: 4.2
Source: NVD

Description

An issue was discovered in SchedMD Slurm 22.05.x and 23.02.x. There is Incorrect Access Control: an attacker can modified their extended group list that is used with the sbcast subsystem, and open files with an unauthorized set of extended groups. The fixed versions are 22.05.11 and 23.02.7.

Affected (2)

Products: Schedmd: Slurm
Schedmd
1 product
Slurm
Configuration A
2 vulnerable
Vulnerable SoftwareAffected Versions
Schedmd
Slurm
From 22.05.0 to 22.05.11
Slurm
From 23.02.0 to 23.02.7

References (10)

Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Mailing ListVendor Advisory
Source: cve@mitre.org
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Mailing ListVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory

Timeline

No history available yet.