CVSS 3.1 Score 8.2 of 10 (high)


Published Dec 14, 2023
Updated: Jan 3, 2024


CVE-2023-49938 is a vulnerability discovered in SchedMD Slurm 22.05.x and 23.02.x. It is classified as a high-risk vulnerability with a base score of 8.2. The vulnerability allows an attacker to modify their extended group list, which can be used with the sbcast subsystem, and gain unauthorized access to open files. The affected products include tVhU_O, tVhU_P, tVhU_M, tVhU_N, t24p8t, t24p8s, tVhU_I, tVhU_J, tVhU_G, tVhU_H, tVhU_E, tVhU_F, tVhU_C, tVhU_D, tVhU_B, t9y8ed and t9y8ef. To remediate this vulnerability, users are advised to update to the fixed versions 22.05.11 and 23.02.7. This vulnerability poses a potential danger to organizations as it allows unauthorized access to files and can compromise the confidentiality of sensitive information.

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-49938 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options