Nomad File Sandbox Escape via Template and Artifact Stanzas
Summary A vulnerability was identified in Nomad and Nomad Enterprise “Nomad” such that a specially crafted Nomad jobspec can be used to escape the client file sandbox configuration. This vulnerability, CVE-2020-27195, affects version 0.9.0 up to 0.12.5, and is fixed in the 0.12.6, 0.11.5, and...