Lucene search
K

5 matches found

Snyk
Snyk
added 2026/05/12 9:31 p.m.10 views

Directory Traversal

Overview github.com/hashicorp/nomad is a workload orchestrator that can deploy a mix of microservice, batch, containerized, and non-containerized applications. Affected versions of this package are vulnerable to Directory Traversal via the host volume Create workflow. An attacker can break out of...

8.8CVSS6.3AI score0.06892EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2025/05/29 12:0 a.m.5 views

The vulnerability of Nomad application orchestrators, related to incorrect processing of network packet headers, allows attackers to escalate their privileges.

The vulnerability of Nomad application orchestrators is related to incorrect processing of network packet headers. Exploiting this vulnerability can allow an attacker to increase their privileges remotely...

5.3CVSS5.8AI score0.0054EPSS
Exploits0References3Affected Software2
BDU FSTEC
BDU FSTEC
added 2025/05/29 12:0 a.m.5 views

The vulnerability of Nomad application orchestrators, related to the lack of authorization, allows attackers to gain unauthorized access to protected information.

The vulnerability of Nomad application orchestrators is related to the lack of authentication. Exploiting this vulnerability can allow an attacker operating remotely to gain unauthorized access to protected information...

4.7CVSS5.5AI score0.00364EPSS
Exploits0References3Affected Software2
BDU FSTEC
BDU FSTEC
added 2025/03/27 12:0 a.m.6 views

The vulnerability of Nomad application orchestrators, related to incorrect privilege assignment, allows attackers to gain access to confidential information.

The vulnerability of Nomad application orchestrators is related to the improper assignment of privileges. Exploiting this vulnerability can allow an attacker, operating remotely, to gain access to confidential information...

6.8CVSS6.5AI score0.0053EPSS
Exploits0References4Affected Software3
BDU FSTEC
BDU FSTEC
added 2024/09/13 12:0 a.m.5 views

The vulnerability of Nomad application orchestrators, related to improper external control of the file name or path during data loading, allows attackers to create archives that unpack files according to paths outside the expected distribution directory.

The vulnerability of Nomad application orchestrators is related to incorrect external management of filenames or file paths during data loading. Exploiting this vulnerability allows an attacker to create a archive that unpacks files using paths outside the expected distribution directory...

5.8CVSS5.4AI score0.00333EPSS
Exploits0References3Affected Software2
Rows per page
Query Builder