CVE-2021-45102

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2021-45102

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2021-45102.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2021-45102

Downstream

UBUNTU-CVE-2021-45102

Published

2021-12-16T05:15:08.917Z

Modified

2026-03-14T08:24:26.623562Z

Severity

8.8 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVSS Calculator

Summary

[none]

Details

An issue was discovered in HTCondor 9.0.x before 9.0.4 and 9.1.x before 9.1.2. When authenticating to an HTCondor daemon using a SciToken, a user may be granted authorizations beyond what the token should allow.

References

https://research.cs.wisc.edu/htcondor/security/vulnerabilities/HTCONDOR-2021-0004/

Affected packages

Git / github.com/htcondor/htcondor

Affected ranges

Type

GIT

Repo

https://github.com/htcondor/htcondor

Events

Introduced

Last affected

397ce7a3488d7b4e41168b0d039b19468138eeea

Introduced

Last affected

4b1b53bb3920f54f30d9124c6b73643bf96f0c33

Introduced

Last affected

f4a0614b5bb32fb2fefec799af389bae335d57a4

Introduced

Last affected

25be8bba5ab8a4160122358ddd5612a5de22091c

Database specific

{
    "versions": [
        {
            "introduced": "0"
        },
        {
            "last_affected": "9.0.0"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "9.0.1"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "9.0.2"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "9.1.0"
        }
    ]
}

Affected versions

Bosco_1.*

Bosco_1.0

Bosco_1.1

Bosco_1.1.1

Bosco_1.2

Bosco_1.2.1

Bosco_1.2.2

Bosco_1.2.3

Other

V7_0_1-doc

V7_0_2

V7_0_2-doc

V7_0_3

V7_0_4

V7_0_4-doc

V7_0_5

V7_0_5-doc

V7_1_0

V7_1_1-doc

V7_1_3-doc

V7_1_4-doc

V7_2_0

V7_2_0-doc

V7_2_1-doc

V7_2_2

V7_2_3

V7_2_3-doc

V7_2_4

V7_2_4-doc

V7_3_0

V7_3_1

V7_3_1-doc

V7_3_2

V7_3_2-doc

V7_4_0

V7_4_1

V7_4_2-doc

V7_4_3-doc

V7_4_4

V7_4_4-doc

V7_5_0

V7_5_1

V7_5_1-doc

V7_5_2

V7_5_2-doc

V7_5_3

V7_5_3-doc

V7_5_4

V7_5_4-doc

V7_5_5

V7_5_6

V7_6_0

V7_6_1

V7_6_1-doc

V7_6_10

V7_6_2

V7_6_3

V7_6_4

V7_6_5

V7_6_6

V7_6_7

V7_6_9

V7_7_0

V7_7_1

V7_7_2

V7_7_4

V7_7_5

V7_7_6

V7_8_0

V7_8_1

V7_8_3

V7_8_4

V7_8_5

V7_8_6

V7_8_7

V7_8_8

V7_9_0

V7_9_1

V7_9_2

V7_9_3

V7_9_4

V7_9_5

V7_9_6

V8_0_0

V8_0_1

V8_0_2

V8_0_3

V8_0_4

V8_0_5

V8_0_6

V8_0_7

V8_1_0

V8_1_1

V8_1_2

V8_1_3

V8_1_4

V8_1_5

V8_1_6

V8_2_0

V8_2_1

V8_2_10

V8_2_2

V8_2_3

V8_2_4

V8_2_5

V8_2_6

V8_2_7

V8_2_8

V8_2_9

V8_3_0

V8_3_1

V8_3_2

V8_3_3

V8_3_5

V8_3_6

V8_3_7

V8_3_8

V8_4_0

V8_4_1

V8_4_10

V8_4_11

V8_4_12

V8_4_2

V8_4_4

V8_4_5

V8_4_6

V8_4_7

V8_4_8

V8_4_9

V8_5_0

V8_5_1

V8_5_2

V8_5_3

V8_5_4

V8_5_5

V8_5_6

V8_5_7

V8_5_8

V8_6_0

V8_6_1

V8_6_10

V8_6_11

V8_6_12

V8_6_13

V8_6_2

V8_6_3

V8_6_4

V8_6_5

V8_6_6

V8_6_7

V8_6_8

V8_6_9

V8_7_0

V8_7_1

V8_7_10

V8_7_2

V8_7_3

V8_7_4

V8_7_5

V8_7_8

V8_7_9

V8_8_0

V8_8_1

V8_8_10

V8_8_11

V8_8_12

V8_8_13

V8_8_2

V8_8_3

V8_8_4

V8_8_5

V8_8_6

V8_8_7

V8_8_8

V8_8_9

V8_9_0

V8_9_1

V8_9_10

V8_9_10_a1

V8_9_11

V8_9_12

V8_9_12_a1

V8_9_13

V8_9_2

V8_9_3

V8_9_4

V8_9_5

V8_9_6_a1

V8_9_7

V8_9_8

V8_9_8_a2

V8_9_9

V8_9_9_a1

V9_0_0

V9_0_0_a1

classads_1_0_10

classads_1_0_5

classads_1_0_6

classads_1_0_7

classads_1_0_8

classads_1_0_9

stable

Database specific

source

"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2021-45102.json"