Lucene search

K
alpinelinuxAlpine Linux Development TeamALPINE:CVE-2021-43415
HistoryDec 03, 2021 - 10:15 p.m.

CVE-2021-43415

2021-12-0322:15:00
Alpine Linux Development Team
security.alpinelinux.org
18

0.001 Low

EPSS

Percentile

42.5%

HashiCorp Nomad and Nomad Enterprise up to 1.0.13, 1.1.7, and 1.2.0, with the QEMU task driver enabled, allowed authenticated users with job submission capabilities to bypass the configured allowed image paths. Fixed in 1.0.14, 1.1.8, and 1.2.1.

OSVersionArchitecturePackageVersionFilename
Alpine3.16-communitynoarchnomad< 1.2.6-r0UNKNOWN
Alpine3.17-communitynoarchnomad< 1.2.6-r0UNKNOWN
Alpine3.18-communitynoarchnomad< 1.2.6-r0UNKNOWN

0.001 Low

EPSS

Percentile

42.5%