CVE-2020-10944
HashiCorp Nomad and Nomad Enterprise up to 0.10.4 contain a cross-site scripting vulnerability in the web UI triggered by files from a malicious workload; arbitrary JavaScript could execute in the UI. The issue is fixed in 0.10.5. Affected component is the Nomad web interface; root cause is a pay...