CVE-2020-27958

CVE-2020-27958

EPSS 1.0%

The Job Composer app in Ohio Supercomputer Center Open OnDemand before 1.7.19 and 1.8.x before 1.8.18 allows remote authenticated users to provide crafted input in a job template.

Produtos afetados

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://discourse.osc.edu/t/security-fix-in-open-ondemand-1-8-18-and-1-7-19-patch-releases-now-available/1198 https://github.com/OSC/Open-OnDemand/commits/master https://listsprd.osu.edu/pipermail/ood-users/