Strix
26.1K

CVE-2011-4925

UnknownEPSS 1.01%

Last modified

CVE-2011-4925 is a vulnerability of currently unknown severity. Terascale Open-Source Resource and Queue Manager (aka TORQUE Resource Manager) before 2.5.9, when munge authentication is used, allows remote authenticated users to impersonate arbitrary user accounts via unspecified vectors.. EPSS estimates a 1.01% chance of exploitation in the next 30 days.

Description

Terascale Open-Source Resource and Queue Manager (aka TORQUE Resource Manager) before 2.5.9, when munge authentication is used, allows remote authenticated users to impersonate arbitrary user accounts via unspecified vectors.

Metrics

EPSS Probability
1.01%

58.6th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

Affected Software

VendorProductVersions
Cluster ResourcesTorque Resource Manager1.0.1p0
Cluster ResourcesTorque Resource Manager1.0.1p1
Cluster ResourcesTorque Resource Manager1.0.1p2
Cluster ResourcesTorque Resource Manager1.0.1p3
Cluster ResourcesTorque Resource Manager1.0.1p4
Cluster ResourcesTorque Resource Manager1.0.1p5
Cluster ResourcesTorque Resource Manager1.0.1p6
Cluster ResourcesTorque Resource Manager1.1.0p0
Cluster ResourcesTorque Resource Manager1.1.0p1
Cluster ResourcesTorque Resource Manager1.1.0p2
Cluster ResourcesTorque Resource Manager1.1.0p3
Cluster ResourcesTorque Resource Manager1.1.0p4
Cluster ResourcesTorque Resource Manager1.1.0p5
Cluster ResourcesTorque Resource Manager1.1.0p6
Cluster ResourcesTorque Resource Manager1.2.0p0
Cluster ResourcesTorque Resource Manager1.2.0p1
Cluster ResourcesTorque Resource Manager1.2.0p2
Cluster ResourcesTorque Resource Manager1.2.0p3
Cluster ResourcesTorque Resource Manager1.2.0p4
Cluster ResourcesTorque Resource Manager1.2.0p5
Cluster ResourcesTorque Resource Manager1.2.0p6
Cluster ResourcesTorque Resource Manager2.0.0p0
Cluster ResourcesTorque Resource Manager2.0.0p1
Cluster ResourcesTorque Resource Manager2.0.0p2
Cluster ResourcesTorque Resource Manager2.0.0p3
Cluster ResourcesTorque Resource Manager2.0.0p4
Cluster ResourcesTorque Resource Manager2.0.0p5
Cluster ResourcesTorque Resource Manager2.0.0p6
ClusterresourcesTorque Resource Manager<= 2.5.8
ClusterresourcesTorque Resource Manager2.1.0p0
ClusterresourcesTorque Resource Manager2.1.1
ClusterresourcesTorque Resource Manager2.1.2
ClusterresourcesTorque Resource Manager2.2.0
ClusterresourcesTorque Resource Manager2.3.0
ClusterresourcesTorque Resource Manager2.3.1
ClusterresourcesTorque Resource Manager2.3.2
ClusterresourcesTorque Resource Manager2.3.3
ClusterresourcesTorque Resource Manager2.3.4
ClusterresourcesTorque Resource Manager2.3.5
ClusterresourcesTorque Resource Manager2.3.6
ClusterresourcesTorque Resource Manager2.3.7
ClusterresourcesTorque Resource Manager2.3.8
ClusterresourcesTorque Resource Manager2.3.9
ClusterresourcesTorque Resource Manager2.3.10
ClusterresourcesTorque Resource Manager2.3.11
ClusterresourcesTorque Resource Manager2.3.12
ClusterresourcesTorque Resource Manager2.4.0
ClusterresourcesTorque Resource Manager2.4.1
ClusterresourcesTorque Resource Manager2.4.2
ClusterresourcesTorque Resource Manager2.4.3

Showing 50 of 67 affected configurations. See NVD for the full list.

References

Timeline

Published
Last Modified
Status
Modified

Frequently Asked Questions

What is CVE-2011-4925?
Terascale Open-Source Resource and Queue Manager (aka TORQUE Resource Manager) before 2.5.9, when munge authentication is used, allows remote authenticated users to impersonate arbitrary user accounts via unspecified vectors.
How severe is CVE-2011-4925?
Severity scoring for CVE-2011-4925 is pending analysis. The EPSS model estimates a 1.01% probability of exploitation in the next 30 days.
How do I fix CVE-2011-4925?
Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2011-4925?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST