0.001 Low
EPSS
Percentile
42.6%
HashiCorp Nomad and Nomad Enterprise Raft RPC layer allows non-server agents with a valid certificate signed by the same CA to access server-only functionality, enabling privilege escalation. Fixed in 1.0.10 and 1.1.4.
bugzilla.redhat.com/show_bug.cgi?id=2039923
nvd.nist.gov/vuln/detail/CVE-2021-37218
www.cve.org/CVERecord?id=CVE-2021-37218