The vulnerability of the ACL-policy search mechanism based on application prefixing by the Nomad orchestrator allows attackers to bypass existing security mechanisms.
The vulnerability of the ACL-policy-based search mechanism of the Nomad application lies in the improper assignment of access control rules. Exploiting this vulnerability allows a malicious actor to bypass existing security mechanisms by creating tasks with special prefix names...