Condor Project : Security Vulnerabilities, CVEs, Published In 2012 (Information Leak)
The command_give_request_ad function in condor_startd.V6/command.cpp Condor 7.6.x before 7.6.10 and 7.8.x before 7.8.4 allows remote attackers to obtain sensitive information, and possibly control or start arbitrary jobs, via a ClassAd request to the condor_startd port, which leaks the ClaimId.
Max CVSS
5.8
EPSS Score
0.39%
Published
2012-09-28
Updated
2012-10-03
1 vulnerabilities found