CVE-2023-1296

HashiCorp Nomad and Nomad Enterprise were vulnerable where deny policies on a workload’s variables were not enforced. Affected versions: Nomad/Nomad Enterprise 1.4.0 up to 1.5.0. Root cause involves ACL/deny policy enforcement for workload variables. Impact per sources is limited to confidential ...