vulnerability
FreeBSD: VID-3a66cb69-716f-11e8-be54-3085a9a47796: slurm -- insecure handling of user_name and gid fields
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 8 | (AV:N/AC:L/Au:N/C:N/I:C/A:N) | Jun 16, 2018 | Jun 19, 2018 | Dec 10, 2025 |
Severity
8
CVSS
(AV:N/AC:L/Au:N/C:N/I:C/A:N)
Published
Jun 16, 2018
Added
Jun 19, 2018
Modified
Dec 10, 2025
Description
SchedMD reports: Insecure handling of user_name and gid fields (CVE-2018-10995) While fixes are only available for the supported 17.02 and 17.11 releases, it is believed that similar vulnerabilities do affect past versions as well. The only resolution is to upgrade Slurm to a fixed release.
Solution
freebsd-upgrade-package-slurm-wlm
References
Rapid7 Labs
2026 Global Threat Landscape Report
The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.