Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2021-43415HistoryDec 03, 2021 - 10:15 p.m.
CVE-2021-43415
2021-12-0322:15:00
Debian Security Bug Tracker
security-tracker.debian.org
10
0.001 Low
EPSS
Percentile
42.9%
HashiCorp Nomad and Nomad Enterprise up to 1.0.13, 1.1.7, and 1.2.0, with the QEMU task driver enabled, allowed authenticated users with job submission capabilities to bypass the configured allowed image paths. Fixed in 1.0.14, 1.1.8, and 1.2.1.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 11 | all | nomad | <= 0.12.10+dfsg1-3 | nomad_0.12.10+dfsg1-3_all.deb |
Related
ubuntucve
ubuntucve
CVE-2021-43415
2021-12-03 00:00:00
osv
osv
Improper Authentication in HashiCorp Nomad
2021-12-10 20:17:55
CVE-2021-43415
2021-12-03 22:15:07
alpinelinux
alpinelinux
CVE-2021-43415
2021-12-03 22:15:07
cvelist
cvelist
CVE-2021-43415
2021-12-03 21:20:12
github
github
Improper Authentication in HashiCorp Nomad
2021-12-10 20:17:55
redhatcve
redhatcve
CVE-2021-43415
2022-01-12 23:22:26
cve
cve
CVE-2021-43415
2021-12-03 22:15:07
veracode
veracode
Bypass Restriction
2022-03-21 05:39:10
nvd
nvd
CVE-2021-43415
2021-12-03 22:15:07
prion
prion
Design/Logic Flaw
2021-12-03 22:15:00