Privilege Escalation

2020-04-1000:38:30

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

0.005 Low

EPSS

Percentile

75.9%

JSON

condor is vulnerable to privilege escalation. A flaw was found in the way Condor managed jobs. This could allow a user that is authorized to submit jobs into Condor to queue a job as if it were submitted by a different local user, potentially leading to unauthorized access to that user’s account.

CPENameOperatorVersion
condoreq7.0.4__4.el5
condoreq7.0.4__4.el4
condoreq7.0.5__2.el5
condoreq7.4.1__0.7.el5
condoreq7.2.0__3.el4
condoreq7.2.2__0.9.el5
condoreq7.0.5__2.el4
condoreq7.2.2__0.9.el4
condoreq7.4.1__0.7.el4
condoreq7.2.0__3.el5

Name	Operator	Version
condor	eq	7.0.4__4.el5
condor	eq	7.0.4__4.el4
condor	eq	7.0.5__2.el5
condor	eq	7.4.1__0.7.el5
condor	eq	7.2.0__3.el4
condor	eq	7.2.2__0.9.el5
condor	eq	7.0.5__2.el4
condor	eq	7.2.2__0.9.el4
condor	eq	7.4.1__0.7.el4
condor	eq	7.2.0__3.el5