Lucene search
Redhat.comRH:CVE-2023-0821HistoryFeb 17, 2023 - 12:01 p.m.
CVE-2023-0821
2023-02-1712:01:07
redhat.com
access.redhat.com
16
hashicorp
nomad
package
flaw
excessive disk resource
maliciously compressed source
6.5 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
0.001 Low
EPSS
Percentile
31.6%
A flaw was found in the HashiCorp Nomad package. A job submitted with a maliciously compressed source (for example, “Zip Bomb”) in an artifact stanza can cause excessive disk resource consumption, crashing a Nomad client agent.
Related
cve
cve
CVE-2023-0821
2023-02-16 22:15:11
debiancve
debiancve
CVE-2023-0821
2023-02-16 22:15:00
prion
prion
Denial of service
2023-02-16 22:15:00
github
github
Uncontrolled Resource Consumption in Hashicorp Nomad
2023-02-17 00:30:28
osv
osv
Uncontrolled Resource Consumption in Hashicorp Nomad
2023-02-17 00:30:28
CVE-2023-0821
2023-02-16 22:15:11
ubuntucve
ubuntucve
CVE-2023-0821
2023-02-16 00:00:00
cvelist
cvelist
nvd
nvd
CVE-2023-0821
2023-02-16 22:15:11
6.5 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
0.001 Low
EPSS
Percentile
31.6%
Related for RH:CVE-2023-0821