Lucene search
K

7 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 11:20 p.m.6 views

CVE-2022-3866

HashiCorp Nomad and Nomad Enterprise 1.4.0 up to 1.4.1 workload identity token can list non-sensitive metadata for paths under nomad/ that belong to other jobs in the same namespace. Fixed in 1.4.2...

5CVSS6.8AI score0.00508EPSS
Exploits0References1
NVD
NVD
added 2022/11/10 6:15 a.m.23 views

CVE-2022-3866

HashiCorp Nomad and Nomad Enterprise 1.4.0 up to 1.4.1 workload identity token can list non-sensitive metadata for paths under nomad/ that belong to other jobs in the same namespace. Fixed in 1.4.2...

5CVSS0.00508EPSS
Exploits0References1
OSV
OSV
added 2022/11/10 6:15 a.m.6 views

UBUNTU-CVE-2022-3866

HashiCorp Nomad and Nomad Enterprise 1.4.0 up to 1.4.1 workload identity token can list non-sensitive metadata for paths under nomad/ that belong to other jobs in the same namespace. Fixed in 1.4.2...

5CVSS5.7AI score0.00508EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2022/11/10 5:34 a.m.6 views

CVE-2022-3866 Nomad Workload Identity Token Can List Non-sensitive Metadata for Paths Under nomad/

HashiCorp Nomad and Nomad Enterprise 1.4.0 up to 1.4.1 workload identity token can list non-sensitive metadata for paths under nomad/ that belong to other jobs in the same namespace. Fixed in 1.4.2...

5CVSS6.7AI score0.00508EPSS
Exploits0References1
Cvelist
Cvelist
added 2022/11/10 5:34 a.m.33 views

CVE-2022-3866 Nomad Workload Identity Token Can List Non-sensitive Metadata for Paths Under nomad/

HashiCorp Nomad and Nomad Enterprise 1.4.0 up to 1.4.1 workload identity token can list non-sensitive metadata for paths under nomad/ that belong to other jobs in the same namespace. Fixed in 1.4.2...

5CVSS5.4AI score0.00508EPSS
Exploits0References1
CVE
CVE
added 2022/11/10 5:34 a.m.66 views

CVE-2022-3866

CVE-2022-3866 affects HashiCorp Nomad and Nomad Enterprise versions 1.4.0 through 1.4.1, where the workload identity token could list non-sensitive metadata for paths under the nomad/ namespace that belong to other jobs in the same namespace. The issue is fixed in version 1.4.2. The documented im...

5CVSS4.6AI score0.00508EPSS
Exploits0References1Affected Software1
HashiCorp Security Advisories
HashiCorp Security Advisories
added 2022/10/28 3:57 p.m.8 views

Nomad’s Workload Identity Token Can List Non-sensitive Metadata For nomad/ Paths

Summary A vulnerability was identified in Nomad and Nomad Enterprise “Nomad” such that a workload identity token can list non-sensitive metadata for paths under nomad/ that belong to other jobs in the same namespace.This vulnerability, CVE-2022-3866, was fixed in Nomad 1.4.2. Background Nomad’s...

5CVSS6AI score0.00508EPSS
Exploits0Affected Software1
Rows per page
Query Builder