7 matches found
EUVD-2022-7051
Malicious code in bioql PyPI...
Denial Of Service (DOS)
Hashicorp Nomad is vulnerable to Denial of Service DOS. The vulnerability exists due to the lack of GCS URLs validation in the NewGetter function of getter.go which allows an attacker to cause an application crash...
CVE-2022-41606
HashiCorp Nomad and Nomad Enterprise 1.0.2 up to 1.2.12, and 1.3.5 jobs submitted with an artifact stanza using invalid S3 or GCS URLs can be used to crash client agents. Fixed in 1.2.13, 1.3.6, and 1.4.0...
CVE-2022-41606
HashiCorp Nomad and Nomad Enterprise 1.0.2 up to 1.2.12, and 1.3.5 jobs submitted with an artifact stanza using invalid S3 or GCS URLs can be used to crash client agents. Fixed in 1.2.13, 1.3.6, and 1.4.0...
CVE-2022-41606
HashiCorp Nomad and Nomad Enterprise 1.0.2 up to 1.2.12, and 1.3.5 jobs submitted with an artifact stanza using invalid S3 or GCS URLs can be used to crash client agents. Fixed in 1.2.13, 1.3.6, and 1.4.0...
CVE-2022-41606
HashiCorp Nomad and Nomad Enterprise 1.0.2 up to 1.2.12, and 1.3.5 jobs submitted with an artifact stanza using invalid S3 or GCS URLs can be used to crash client agents. Fixed in 1.2.13, 1.3.6, and 1.4.0...
PT-2022-25981 · Hashicorp +1 · Hashicorp Nomad +2
Name of the Vulnerable Software and Affected Versions: HashiCorp Nomad and Nomad Enterprise versions 1.0.2 through 1.2.12 HashiCorp Nomad and Nomad Enterprise version 1.3.5 Description: The issue allows jobs submitted with an artifact stanza using invalid S3 or GCS URLs to crash client agents...