The policy definition evaluator in Condor 7.5.4, 8.0.0, and earlier does not properly handle attributes in a (1) PREEMPT, (2) SUSPEND, (3) CONTINUE, (4) WANT_VACATE, or (5) KILL policy that evaluate. Rated low severity (CVSS 3.5), this vulnerability is remotely exploitable. No vendor patch available.
Denial Of Service
Condor
Enterprise Mrg
NVD
CVSS 2.0
3.5
EPSS
0.7%
Use-after-free vulnerability in the virtio-pci implementation in Qemu 1.4.0 through 1.6.0 allows local users to cause a denial of service (daemon crash) by "hot-unplugging" a virtio device. Rated low severity (CVSS 2.3).
Denial Of Service
Qemu
NVD
CVSS 2.0
2.3
EPSS
0.1%