Nomad File Sandbox Escape via Container Volume Mount
Summary A vulnerability, CVE-2020-28348, was discovered in Nomad and Nomad Enterprise “Nomad” such that an operator with job submission capabilities can mount the host file system of a client agent and subvert the default Docker file sandbox feature when not explicitly disabled or when using a...