Published: 31 January 2020
The scheduler in HTCondor before 8.2.6 allows remote authenticated users to execute arbitrary code.
From the Ubuntu security team
It was discovered that HTCondor ncorrectly invoked the mailx utility. An attacker could use this vulnerability to execute arbitrary commands.
CVSS 3 base score: 8.8