Hashicorp Nomad 0.1.0 - Edition

CPE Details

Hashicorp Nomad 0.1.0 - Edition
hashicorp
nomad
0.1.0
2020-02-19
20h34 +00:00
2020-02-19
20h34 +00:00
CPE NVD
Alerte pour un CPE
Restez informé de toutes modifications pour un CPE spécifique.
Gestion des notifications

CPE Name: cpe:2.3:a:hashicorp:nomad:0.1.0:*:*:*:-:*:*:*

Informations

Vendor

hashicorp

Product

nomad

Version

0.1.0

Software Edition

-

Related CVE

Open and find in CVE List

CVE ID Publié Description Score Gravité
CVE-2023-0821 2023-02-16 21h23 +00:00 HashiCorp Nomad and Nomad Enterprise 1.2.15 up to 1.3.8, and 1.4.3 jobs using a maliciously compressed artifact stanza source can cause excessive disk usage. Fixed in 1.2.16, 1.3.9, and 1.4.4.
6.5
Moyen
CVE-2021-37218 2021-09-07 09h40 +00:00 HashiCorp Nomad and Nomad Enterprise Raft RPC layer allows non-server agents with a valid certificate signed by the same CA to access server-only functionality, enabling privilege escalation. Fixed in 1.0.10 and 1.1.4.
8.8
Haute
CVE-2021-32575 2021-06-17 16h28 +00:00 HashiCorp Nomad and Nomad Enterprise up to version 1.0.4 bridge networking mode allows ARP spoofing from other bridged tasks on the same node. Fixed in 0.12.12, 1.0.5, and 1.1.0 RC1.
6.5
Moyen
CVE-2021-3283 2021-02-01 14h36 +00:00 HashiCorp Nomad and Nomad Enterprise up to 0.12.9 exec and java task drivers can access processes associated with other tasks on the same node. Fixed in 0.12.10, and 1.0.3.
7.5
Haute
CVE-2020-7956 2020-01-31 11h43 +00:00 HashiCorp Nomad and Nomad Enterprise up to 0.10.2 incorrectly validated role/region associated with TLS certificates used for mTLS RPC, and were susceptible to privilege escalation. Fixed in 0.10.3.
9.8
Critique
CVE-2020-7218 2020-01-31 11h26 +00:00 HashiCorp Nomad and Nonad Enterprise up to 0.10.2 HTTP/RPC services allowed unbounded resource usage, and were susceptible to unauthenticated denial of service. Fixed in 0.10.3.
7.5
Haute