6.5

CVE-2009-4133

EPSS 1.43%
Published 23.12.2009 18:30:00
Last modified 09.04.2025 00:30:58
Source secalert@redhat.com
Teams watchlist Login
Open Login

Condor 6.5.4 through 7.2.4, 7.3.x, and 7.4.0, as used in MRG, Grid for MRG, and Grid Execute Node for MRG, allows remote authenticated users to queue jobs as an arbitrary user, and thereby gain privileges, by using a Condor command-line tool to modify an unspecified job attribute.

Affected products Warnungen 0 Metrics 2 CWE 0 References 14

Data is provided by the National Vulnerability Database (NVD)

Condor Project ≫ Condor Version6.5.4

Condor Project ≫ Condor Version6.8.0

Condor Project ≫ Condor Version6.8.1

Condor Project ≫ Condor Version6.8.2

Condor Project ≫ Condor Version6.8.3

Condor Project ≫ Condor Version6.8.4

Condor Project ≫ Condor Version6.8.5

Condor Project ≫ Condor Version6.8.6

Condor Project ≫ Condor Version6.8.7

Condor Project ≫ Condor Version6.8.8

Condor Project ≫ Condor Version6.8.9

Condor Project ≫ Condor Version7.0.0

Condor Project ≫ Condor Version7.0.1

Condor Project ≫ Condor Version7.0.2

Condor Project ≫ Condor Version7.0.3

Condor Project ≫ Condor Version7.0.4

Condor Project ≫ Condor Version7.0.5

Condor Project ≫ Condor Version7.0.6

Condor Project ≫ Condor Version7.1.0

Condor Project ≫ Condor Version7.1.1

Condor Project ≫ Condor Version7.1.2

Condor Project ≫ Condor Version7.1.3

Condor Project ≫ Condor Version7.1.4

Condor Project ≫ Condor Version7.2.0

Condor Project ≫ Condor Version7.2.1

Condor Project ≫ Condor Version7.2.2

Condor Project ≫ Condor Version7.2.3

Condor Project ≫ Condor Version7.2.4

Condor Project ≫ Condor Version7.3.0

Condor Project ≫ Condor Version7.3.1

Condor Project ≫ Condor Version7.3.2

Condor Project ≫ Condor Version7.4.0

Redhat ≫ Enterprise Mrg Version1.2

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	1.43%	0.788

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	6.5	8	6.4	AV:N/AC:L/Au:S/C:P/I:P/A:P

http://condor-wiki.cs.wisc.edu/index.cgi/tktview?tn=1018

http://secunia.com/advisories/37766

Vendor Advisory

http://secunia.com/advisories/37803

Vendor Advisory

http://securitytracker.com/id?1023378

http://www.cs.wisc.edu/condor/manual/v7.4/8_3Stable_Release.html#SECTION00931000000000000000

Vendor Advisory

http://www.cs.wisc.edu/condor/security/vulnerabilities/CONDOR-2009-0001.html

Vendor Advisory

http://www.redhat.com/support/errata/RHSA-2009-1688.html

http://www.redhat.com/support/errata/RHSA-2009-1689.html

http://www.securityfocus.com/bid/37443

https://bugzilla.redhat.com/show_bug.cgi?id=544371

https://exchange.xforce.ibmcloud.com/vulnerabilities/54984

https://nvd.nist.gov/vuln/detail/CVE-2009-4133

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2009-4133

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2009-4133

EUVD