FreeBSD : slurm-wlm -- SQL Injection attacks against SlurmDBD (b3e04661-2a0a-11e8-9e63-3085a9a47796)
High Nessus Plugin ID 108431
SynopsisThe remote FreeBSD host is missing a security-related update.
DescriptionSchedMD reports :
Several issues were discovered with incomplete sanitization of user-provided text strings, which could potentially lead to SQL injection attacks against SlurmDBD itself. Such exploits could lead to a loss of accounting data, or escalation of user privileges on the cluster.
SolutionUpdate the affected package.