6.5

CVE-2009-4133

EPSS 1.43%
Veröffentlicht 23.12.2009 18:30:00
Zuletzt bearbeitet 09.04.2025 00:30:58
Quelle secalert@redhat.com
Teams Watchlist Login
Unerledigt Login

Condor 6.5.4 through 7.2.4, 7.3.x, and 7.4.0, as used in MRG, Grid for MRG, and Grid Execute Node for MRG, allows remote authenticated users to queue jobs as an arbitrary user, and thereby gain privileges, by using a Condor command-line tool to modify an unspecified job attribute.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 14

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Condor Project ≫ Condor Version6.5.4

Condor Project ≫ Condor Version6.8.0

Condor Project ≫ Condor Version6.8.1

Condor Project ≫ Condor Version6.8.2

Condor Project ≫ Condor Version6.8.3

Condor Project ≫ Condor Version6.8.4

Condor Project ≫ Condor Version6.8.5

Condor Project ≫ Condor Version6.8.6

Condor Project ≫ Condor Version6.8.7

Condor Project ≫ Condor Version6.8.8

Condor Project ≫ Condor Version6.8.9

Condor Project ≫ Condor Version7.0.0

Condor Project ≫ Condor Version7.0.1

Condor Project ≫ Condor Version7.0.2

Condor Project ≫ Condor Version7.0.3

Condor Project ≫ Condor Version7.0.4

Condor Project ≫ Condor Version7.0.5

Condor Project ≫ Condor Version7.0.6

Condor Project ≫ Condor Version7.1.0

Condor Project ≫ Condor Version7.1.1

Condor Project ≫ Condor Version7.1.2

Condor Project ≫ Condor Version7.1.3

Condor Project ≫ Condor Version7.1.4

Condor Project ≫ Condor Version7.2.0

Condor Project ≫ Condor Version7.2.1

Condor Project ≫ Condor Version7.2.2

Condor Project ≫ Condor Version7.2.3

Condor Project ≫ Condor Version7.2.4

Condor Project ≫ Condor Version7.3.0

Condor Project ≫ Condor Version7.3.1

Condor Project ≫ Condor Version7.3.2

Condor Project ≫ Condor Version7.4.0

Redhat ≫ Enterprise Mrg Version1.2

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	1.43%	0.788

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	6.5	8	6.4	AV:N/AC:L/Au:S/C:P/I:P/A:P

http://condor-wiki.cs.wisc.edu/index.cgi/tktview?tn=1018

http://secunia.com/advisories/37766

Vendor Advisory

http://secunia.com/advisories/37803

Vendor Advisory

http://securitytracker.com/id?1023378

http://www.cs.wisc.edu/condor/manual/v7.4/8_3Stable_Release.html#SECTION00931000000000000000

Vendor Advisory

http://www.cs.wisc.edu/condor/security/vulnerabilities/CONDOR-2009-0001.html

Vendor Advisory

http://www.redhat.com/support/errata/RHSA-2009-1688.html

http://www.redhat.com/support/errata/RHSA-2009-1689.html

http://www.securityfocus.com/bid/37443

https://bugzilla.redhat.com/show_bug.cgi?id=544371

https://exchange.xforce.ibmcloud.com/vulnerabilities/54984

https://nvd.nist.gov/vuln/detail/CVE-2009-4133

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2009-4133

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2009-4133

EUVD