Impact
HashiCorp Nomad and Nomad Enterprise contain a path traversal flaw in the handling of dynamic host volumes. The vulnerability can potentially allow an attacker to reference files outside the intended directory, and the CVE notes that this may lead to code execution on the client host. The description does not explicitly state that arbitrary file overwrite or read is possible; based on the stated impact it is inferred that accessing or modifying files could be part of the exploitation chain. Classified as CWE‑22, the flaw has a CVSS score of 8.8, indicating high severity impact on confidentiality, integrity and availability.
Affected Systems
All versions of HashiCorp Nomad and Nomad Enterprise released prior to 2.0.1, 1.11.5, and 1.10.11 are affected. The defect exists in the handling of dynamic host volumes and is fixed in the mentioned releases.
Risk and Exploitability
Because the vulnerability relies on path traversal within dynamic host volumes, an attacker who can influence volume configuration or file creation may execute arbitrary commands on the client host. The EPSS score of 7% indicates a moderate probability of exploitation; however, the high CVSS score and public disclosure warrant immediate attention. The vulnerability is not listed in CISA’s KEV catalog, but its severity and potential for remote code execution make it a high‑priority risk.
OpenCVE Enrichment
Github GHSA