Lucene search
GoogleOSV:GHSA-CJ2H-WW36-V932HistoryMay 18, 2021 - 6:20 p.m.
Improper Certificate Validation in HashiCorp Nomad
2021-05-1818:20:26
Google
osv.dev
11
0.002 Low
EPSS
Percentile
53.4%
HashiCorp Nomad and Nomad Enterprise up to 0.10.2 incorrectly validated role/region associated with TLS certificates used for mTLS RPC, and were susceptible to privilege escalation. Fixed in 0.10.3.
| CPE | Name | Operator | Version |
|---|---|---|---|
| github.com/hashicorp/nomad | lt | 0.10.3 |
Related
debiancve
debiancve
CVE-2020-7956
2020-01-31 13:15:00
nvd
nvd
CVE-2020-7956
2020-01-31 13:15:10
github
github
Improper Certificate Validation in HashiCorp Nomad
2021-05-18 18:20:26
ubuntucve
ubuntucve
CVE-2020-7956
2020-01-31 00:00:00
veracode
veracode
Privilege Escalation
2020-02-03 04:13:32
prion
prion
Privilege escalation
2020-01-31 13:15:00
osv
osv
CVE-2020-7956
2020-01-31 13:15:10
cvelist
cvelist
CVE-2020-7956
2020-01-31 12:43:52
cve
cve
CVE-2020-7956
2020-01-31 13:15:10