HashiCorp Nomad and Nomad Enterprise 0.9.2 through 1.0.17, 1.1.11, and 1.2.5 allow operators with read-fs and alloc-exec (or job-submit) capabilities to read arbitrary files on the host filesystem as root.
Metrics
Affected Vendors & Products
Advisories
Source | ID | Title |
---|---|---|
![]() |
EUVD-2022-1232 | HashiCorp Nomad and Nomad Enterprise 0.9.2 through 1.0.17, 1.1.11, and 1.2.5 allow operators with read-fs and alloc-exec (or job-submit) capabilities to read arbitrary files on the host filesystem as root. |
![]() |
GHSA-wmrx-57hm-mw7r | Arbitrary file reads in HashiCorp Nomad |
Fixes
Solution
No solution given by the vendor.
Workaround
No workaround given by the vendor.
References
History
No history.

Status: PUBLISHED
Assigner: mitre
Published:
Updated: 2024-08-03T04:20:50.373Z
Reserved: 2022-02-09T00:00:00
Link: CVE-2022-24683

No data.

Status : Modified
Published: 2022-02-17T17:15:09.567
Modified: 2024-11-21T06:50:52.120
Link: CVE-2022-24683

No data.

No data.