{"id":"CVE-2022-29501","details":"SchedMD Slurm 21.08.x through 20.11.x has Incorrect Access Control that leads to Escalation of Privileges and code execution.","modified":"2026-05-18T05:53:46.933829182Z","published":"2022-05-05T16:13:56Z","related":["SUSE-RU-2022:4297-1","SUSE-RU-2022:4348-1","SUSE-RU-2022:4361-1","SUSE-RU-2022:4362-1","SUSE-SU-2022:1666-1","SUSE-SU-2022:1726-1","SUSE-SU-2022:1815-1","SUSE-SU-2022:1831-1","SUSE-SU-2022:3454-1","SUSE-SU-2022:3462-1","SUSE-SU-2022:3468-1","SUSE-SU-2022:3477-1","SUSE-SU-2022:3490-1","SUSE-SU-2022:3491-1","SUSE-SU-2022:3497-1","SUSE-SU-2022:3535-1","openSUSE-SU-2024:12069-1"],"database_specific":{"cna_assigner":"mitre","osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/29xxx/CVE-2022-29501.json","unresolved_ranges":[{"source":"DESCRIPTION","extracted_events":[{"introduced":"21.08.x"},{"fixed":"20.11.x"}]}]},"references":[{"type":"WEB","url":"https://lists.schedmd.com/pipermail/slurm-announce/"},{"type":"WEB","url":"https://www.schedmd.com/news.php"},{"type":"WEB","url":"https://www.schedmd.com/news.php?id=260"},{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/29xxx/CVE-2022-29501.json"},{"type":"ADVISORY","url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HXLOI3ERTKMZR2KWNRN7OR5S55VPWENH/"},{"type":"ADVISORY","url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/Y6B7OWVNVCJUDE6VDWGCBUWMRCRETAO3/"},{"type":"ADVISORY","url":"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YBI4NFDGGMBKWG4EMSZL5UHATDCLPCQW/"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2022-29501"},{"type":"ADVISORY","url":"https://www.debian.org/security/2022/dsa-5166"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/schedmd/slurm","events":[{"introduced":"0"},{"fixed":"91b7a0974518c5b76d212563668ceabdcbd9382f"}],"database_specific":{"source":"CPE_FIELD","extracted_events":[{"introduced":"0"},{"fixed":"20.11.9"}],"cpe":"cpe:2.3:a:schedmd:slurm:*:*:*:*:*:*:*:*"}}],"versions":["slurm-20-11-8-1","slurm-20-11-7-1","slurm-20-11-6-1","slurm-20-11-5-1","slurm-20-11-4-1","slurm-20-11-3-1","slurm-20-11-2-1","slurm-20-11-1-1","slurm-20-11-0-1","slurm-20-11-0-0rc2","slurm-20-11-0-0rc1","slurm-20-02-0-0rc1","slurm-20-02-0-0pre1","slurm-19-05-0-0rc1","slurm-19-05-0-0pre3","slurm-19-05-0-0pre2","slurm-19-05-0-0pre1","slurm-18-08-0-0pre2","slurm-18-08-0-0pre1","slurm-17-11-0-0pre2","slurm-17-11-0-0pre1","slurm-17-02-0-0pre4","slurm-17-02-0-0pre3","slurm-17-02-0-0pre2","slurm-17-02-0-0pre1","slurm-16-05-0-0pre2","slurm-16-05-0-0pre1","slurm-15-08-0-1","slurm-15-08-0-0rc1","slurm-15-08-0-0pre6","slurm-15-08-0-0pre5","slurm-15-08-0-0pre4","slurm-15-08-0-0pre3","slurm-15-08-0-0pre2","slurm-15-08-0-0pre1","slurm-14-11-0-0rc1","slurm-14-11-0-0pre5","slurm-14-11-0-0pre4","slurm-14-11-0-0pre3","slurm-14-11-0-0pre2","slurm-14-11-0-0pre1","slurm-14-03-0-1","slurm-14-03-0-0rc1","slurm-14-03-0-0pre6","slurm-14-03-0-0pre5","slurm-13-12-0-0pre4","slurm-13-12-0-0pre3","slurm-13-12-0-0pre2","slurm-2-6-0-0rc2","slurm-2-6-0-0rc1","slurm-2-6-0-0pre4","slurm-2-6-0-0pre3","slurm-2-6-0-0pre2","slurm-2-6-0-0pre1","slurm-2-6-0-0-pre2","slurm-2-5-0-1","slurm-2-5-0-0-rc2","slurm-2-5-0-0-rc1","slurm-2-5-0-0-pre3","slurm-2-5-0-0-pre2","slurm-2-5-0-0-pre1","slurm-2-4-0-0-pre4","slurm-2-4-0-0-pre3","slurm-2-4-0-0-pre2","slurm-2-4-0-0-pre1","slurm-2-3-0-1","slurm-2-3-0-0-rc2","slurm-2-3-0-0-rc1","slurm-2-3-0-0-pre6"],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-29501.json"}}],"schema_version":"1.7.5"}