Vulnerability Description
SchedMD Slurm 23.02.x before 23.02.6 and 22.05.x before 22.05.10 allows filesystem race conditions for gaining ownership of a file, overwriting a file, or deleting files.
CVSS Score
7.0
HIGH
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Schedmd | Slurm | >= 22.05, < 22.05.10 |
| Fedoraproject | Fedora | 39 |
Related Weaknesses (CWE)
References
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproMailing ListThird Party Advisory
- https://lists.schedmd.com/pipermail/slurm-announce/2023/000100.htmlMailing ListVendor Advisory
- https://schedmd.com/security.phpProduct
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproMailing ListThird Party Advisory
- https://lists.schedmd.com/pipermail/slurm-announce/2023/000100.htmlMailing ListVendor Advisory
- https://schedmd.com/security.phpProduct
FAQ
What is CVE-2023-41914?
CVE-2023-41914 is a vulnerability with a CVSS score of 7.0 (HIGH). SchedMD Slurm 23.02.x before 23.02.6 and 22.05.x before 22.05.10 allows filesystem race conditions for gaining ownership of a file, overwriting a file, or deleting files.
How severe is CVE-2023-41914?
CVE-2023-41914 has been rated HIGH with a CVSS base score of 7.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2023-41914?
Check the references section above for vendor advisories and patch information. Affected products include: Schedmd Slurm, Fedoraproject Fedora.