Lucene search
+L
HashicorpRecent

189 matches found

hashicorp
hashicorp
added 2026/07/08 8:18 p.m.9 views

Nomad vulnerable to cross-namespace host volume claim deletion

Summary HashiCorp Nomad and Nomad Enterprise are vulnerable to a cross-namespace authorization bypass in the dynamic host volumes feature that may allow an operator holding the host volume delete permission in one namespace to delete a sticky volume claim belonging to a job in another namespace...

4.2CVSS6.1AI score0.0016EPSS
Exploits0Affected Software1
hashicorp
hashicorp
added 2026/07/08 8:7 p.m.7 views

Nomad vulnerable to sandbox escape in Docker task driver

Summary HashiCorp Nomad and Nomad Enterprise are vulnerable to a sandbox escape in the Docker task driver that may allow a job submitter to bind-mount a host path into a container even when volume bind mounts are disabled, potentially leading to reading and writing files on the host. This...

8.7CVSS6.2AI score0.00316EPSS
Exploits0Affected Software1
hashicorp
hashicorp
added 2026/07/08 5:41 p.m.10 views

Consul-template vulnerable to path redirections in writeToFile

Summary The consul-template library before version 0.42.1 is vulnerable to a path redirection issue in the writeToFile template helper that may allow template output to be written outside the intended directory or to overwrite an existing file. This vulnerability CVE-2026-14361 is fixed in...

4.7CVSS6.1AI score0.00105EPSS
Exploits0Affected Software1
hashicorp
hashicorp
added 2026/07/08 5:26 p.m.8 views

Nomad Docker driver vulnerable to host namespace bypass on Linux

Summary HashiCorp Nomad and Nomad Enterprise did not enforce the allowprivileged restriction for the Docker task driver’s host namespace mode options. This may allow an authenticated job submitter to run a container in a host namespace and access information belonging to the host or to other...

7.7CVSS6.1AI score0.00248EPSS
Exploits0Affected Software1
hashicorp
hashicorp
added 2026/07/08 5:12 p.m.8 views

Memberlist vulnerable to denial of service via gossip message

Summary HashiCorp memberlist before version 0.6.0 is vulnerable to a denial-of-service issue in its push/pull state handling that may allow an attacker with network access to the gossip port to exhaust memory on a receiving node and cause the process to terminate. This vulnerability CVE-2026-1436...

4.9CVSS6.1AI score0.00251EPSS
Exploits0Affected Software1
hashicorp
hashicorp
added 2026/07/06 8:55 p.m.6 views

Terraform Enterprise vulnerable to arbitrary file read

Summary HashiCorp Terraform Enterprise contained an issue in its version control system VCS ingestion of registry modules that did not correctly enforce the intended boundary on packaged module content. This may allow an authenticated user to include files from outside the intended repository...

7.7CVSS6.1AI score0.00295EPSS
Exploits0Affected Software1
hashicorp
hashicorp
added 2026/07/01 5:8 p.m.47 views

Vault Audit Device Plugin Directory Guard Bypass via Legacy Path Option

Summary HashiCorp Vault and Vault Enterprise prior to 2.0.1 audit device validation logic did not consistently apply plugin directory protections when the legacy file audit path option was used. This vulnerability CVE-2026-5051 is fixed in 2.0.1, 1.21.6, 1.20.11, and 1.19.17. Background Vault...

4.4CVSS6.1AI score0.00278EPSS
Exploits0Affected Software1
hashicorp
hashicorp
added 2026/05/12 6:54 p.m.12 views

Nomad vulnerable to path traversal in dynamic host volume which may lead to code execution

Summary HashiCorp Nomad and Nomad Enterprise prior to 2.0.1 are vulnerable to code execution on the client host through a path traversal attack. This vulnerability CVE-2026-7474 is fixed in Nomad 2.0.1, 1.11.5 and 1.10.11. Background Nomad’s Dynamic Host Volumes feature allows the cluster admin t...

8.8CVSS7.2AI score0.06892EPSS
Exploits0Affected Software1
hashicorp
hashicorp
added 2026/05/12 6:50 p.m.7 views

Nomad arbitrary file read/write on client host through symlink attack

Summary HashiCorp Nomad and Nomad Enterprise prior to 2.0.1 are vulnerable to arbitrary file read and write on the client host as the Nomad process user through a symlink attack. This vulnerability CVE-2026-6959 is fixed in Nomad 2.0.1, 1.11.5 and 1.10.11. Background Nomad workloads are run by ta...

6CVSS6.5AI score0.00169EPSS
Exploits0Affected Software1
hashicorp
hashicorp
added 2026/05/12 6:46 p.m.16 views

Nomad's exec2 task driver vulnerable to arbitrary file read/write on client host through symlink attack

Summary HashiCorp Nomad’s exec2 task driver prior to 0.1.2 is vulnerable to arbitrary file read and write on the client host as the Nomad process user through a symlink attack. This vulnerability CVE-2026-8052 is fixed in version 0.1.2 of the exec2 task driver. Background Nomad workloads are run ...

6CVSS6.5AI score0.00129EPSS
Exploits0Affected Software1
hashicorp
hashicorp
added 2026/05/12 1:54 p.m.9 views

Consul-template vulnerable to sandbox path bypass in file helper through symlink attack

Summary The consul-template library before version 0.42.0 is vulnerable to a sandbox path bypass in the file template helper that may allow reading an out-of-sandbox file. This vulnerability CVE-2026-5061 is fixed in consul-template 0.42.0. Background The file template function reads a local file...

4.7CVSS6.1AI score0.00109EPSS
Exploits0Affected Software1
hashicorp
hashicorp
added 2026/05/04 9:39 p.m.10 views

Boundary Workers Vulnerable to Denial of Service During TLS Handshake

Summary Boundary Community Edition and Boundary Enterprise “Boundary” workers are vulnerable to a denial-of-service condition during node enrollment TLS handshakes. An attacker with network access to the worker authentication listener may open a connection and delay or withhold the client...

7.5CVSS6.1AI score0.002EPSS
Exploits0Affected Software1
hashicorp
hashicorp
added 2026/04/17 3:4 a.m.8 views

Vault Vulnerable to Denial-of-Service via Unauthenticated Root Token Generation/Rekey Operations

Summary Vault is vulnerable to a denial-of-service condition where an unauthenticated attacker can repeatedly initiate or cancel root token generation or rekey operations, occupying the single in-progress operation slot. This prevents legitimate operators from completing these workflows. This...

7.5CVSS6.9AI score0.00718EPSS
Exploits0Affected Software1
hashicorp
hashicorp
added 2026/04/17 2:58 a.m.9 views

Vault May Expose Tokens to Auth Plugins Due to Incorrect Header Sanitization

Summary If a Vault auth mount is configured to pass through the “Authorization” header, and the “Authorization” header is used to authenticate to Vault, Vault forwarded the Vault token to the auth plugin backend. This issue, CVE-2026-4525, is fixed in Vault Community Edition 2.0.0 and Vault...

8.8CVSS7AI score0.00406EPSS
Exploits0Affected Software1
hashicorp
hashicorp
added 2026/04/17 2:54 a.m.6 views

Vault Vulnerable to Server-Side Request Forgery in ACME Challenge Validation via Attacker-Controlled DNS

Summary Vault’s PKI engine’s ACME validation did not reject local targets when issuing http-01 and tls-alpn-01 challenges. This may lead to these requests being sent to local network targets, potentially leading to information disclosure. This vulnerability, CVE-2026-5052, is fixed in Vault...

8.6CVSS7AI score0.00332EPSS
Exploits0Affected Software1
hashicorp
hashicorp
added 2026/04/17 2:39 a.m.9 views

Vault KVv2 Metadata and Secret Deletion Policy Bypass Denial-of-Service

Summary An authenticated user with access to a kvv2 path through a policy containing a glob may be able to delete secrets they were not authorized to read or write, resulting in denial-of-service. This vulnerability did not allow a malicious user to delete secrets across namespaces, nor read any...

8.1CVSS7AI score0.00376EPSS
Exploits0Affected Software1
hashicorp
hashicorp
added 2026/04/09 1:23 p.m.9 views

Go-getter may allow to arbitrary filesystem reads through git operations

Summary HashiCorp’s go-getter library up to v1.8.5 may allow arbitrary file reads on the file system during certain git operations through a maliciously crafted URL. This vulnerability, CVE-2026-4660, is fixed in go-getter v1.8.6. This vulnerability does not affect the go-getter/v2 branch and...

7.5CVSS6.1AI score0.00583EPSS
Exploits1Affected Software1
hashicorp
hashicorp
added 2026/03/11 11:7 p.m.9 views

Consul Vulnerable to Arbitrary File Reads Through the Vault Kubernetes Authentication Provider

Summary HashiCorp Consul and Consul Enterprise 1.18.20 up to 1.21.10 and 1.22.4 are vulnerable to arbitrary file read when configured with Kubernetes authentication. This vulnerability, CVE-2026-2808, is fixed in Consul 1.18.21, 1.21.11 and 1.22.5. Background The Consul kubernetes auth method typ...

6.8CVSS6.8AI score0.00475EPSS
Exploits0Affected Software1
hashicorp
hashicorp
added 2026/02/12 1:26 a.m.7 views

Arbitrary code execution in React server-side rendering of untrusted MDX content

Summary The serialize function used to compile MDX in next-mdx-remote is vulnerable to arbitrary code execution due to insufficient sanitization of MDX content. This vulnerability, CVE-2026-0969, is fixed in next-mdx-remote 6.0.0. Background next-mdx-remote is an open-source TypeScript library th...

8.8CVSS6.7AI score0.00582EPSS
Exploits0Affected Software1
hashicorp
hashicorp
added 2025/11/21 2:23 p.m.12 views

Vault Terraform Provider Applied Incorrect Defaults for LDAP Auth Method

Summary Vault’s Terraform Provider incorrectly set the default denynullbind parameter for the LDAP auth method to false by default, potentially resulting in an insecure configuration. If the underlying LDAP server allowed anonymous or unauthenticated binds, this could result in authentication...

9.8CVSS6.2AI score0.00503EPSS
Exploits0Affected Software1
hashicorp
hashicorp
added 2025/11/21 2:13 p.m.9 views

Terraform Enterprise state versions can be created by users without sufficient write access

Summary Terraform state versions can be created by a user with specific but insufficient permissions in a Terraform Enterprise workspace. This may allow for the alteration of infrastructure if a subsequent plan operation is approved by a user with approval permission or is auto-applied. This...

4.3CVSS6.1AI score0.00162EPSS
Exploits0Affected Software1
hashicorp
hashicorp
added 2025/10/28 8:18 p.m.9 views

Consul's KV endpoint is vulnerable to denial of service

Summary Consul and Consul Enterprise’s “Consul” key/value endpoint is vulnerable to denial of service DoS due to incorrect Content Length header validation. This vulnerability, CVE-2025-11374, is fixed in Consul Community Edition 1.22.0 and Consul Enterprise 1.22.0, 1.21.6, 1.20.8 and 1.18.12...

6.5CVSS6.6AI score0.00402EPSS
Exploits0Affected Software1
hashicorp
hashicorp
added 2025/10/28 8:13 p.m.9 views

Consul's event endpoint is vulnerable to denial of service

Summary Consul and Consul Enterprise’s “Consul” event endpoint is vulnerable to denial of service DoS due to lack of maximum value on the Content Length header. This vulnerability, CVE-2025-11375, is fixed in Consul Community Edition 1.22.0 and Consul Enterprise 1.22.0, 1.21.6, 1.20.8 and 1.18.12...

6.5CVSS6.6AI score0.00399EPSS
Exploits0Affected Software1
hashicorp
hashicorp
added 2025/10/23 7:19 p.m.9 views

Incomplete Fix For Previous Vault DoS Issue

Summary A fix for a previous security issue impacting HashiCorp Vault HCSEC-2025-24 / CVE-2025-6203 was incomplete, and did not fully address the vulnerability. The fix was corrected in Vault versions 1.21.0, 1.20.5, 1.19.11, and 1.16.27. The CVE advisory and security bulletin have been updated t...

7.5CVSS7AI score0.00697EPSS
Exploits0Affected Software1
hashicorp
hashicorp
added 2025/10/23 7:14 p.m.7 views

Vault Vulnerable to Denial of Service Due to Rate Limit Regression

Summary Vault and Vault Enterprise “Vault” are vulnerable to an unauthenticated denial of service when processing JSON payloads. This occurs due to a regression from a previous fix for HCSEC-2025-24 which allowed for processing JSON payloads before applying rate limits. This vulnerability,...

7.5CVSS7.1AI score0.00517EPSS
Exploits0Affected Software1
hashicorp
hashicorp
added 2025/10/23 7:3 p.m.8 views

Vault AWS Auth Method Authentication Bypass Through Mishandling of Cache Entries

Summary Vault and Vault Enterprise’s “Vault” AWS Auth method may be susceptible to authentication bypass if the role of the configured boundprincipaliam is the same across AWS accounts, or uses a wildcard. This vulnerability, CVE-2025-11621, is fixed in Vault Community Edition 1.21.0 and Vault...

8.1CVSS7.1AI score0.00494EPSS
Exploits0Affected Software1
hashicorp
hashicorp
added 2025/08/28 8:23 p.m.7 views

Vault Denial of Service Though Complex JSON Payloads

Summary A malicious user may submit a specially-crafted complex payload that otherwise meets the default request size limit which results in excessive memory and CPU consumption of Vault. This may lead to a timeout in Vault’s auditing subroutine, potentially resulting in the Vault server to becom...

7.5CVSS7AI score0.00697EPSS
Exploits0Affected Software1
hashicorp
hashicorp
added 2025/08/15 8:32 p.m.8 views

HashiCorp go-getter Vulnerable to Arbitrary Read through Symlink Attack

Summary HashiCorp’s go-getter library subdirectory download feature is vulnerable to symlink attacks leading to unauthorized read access beyond the designated directory boundaries. This vulnerability, identified as CVE-2025-8959, is fixed in go-getter 1.7.9. Background HashiCorp’s go-getter is a...

7.5CVSS6.6AI score0.00507EPSS
Exploits0Affected Software1
hashicorp
hashicorp
added 2025/08/06 11:9 a.m.8 views

Vault User Enumeration in Userpass Auth Method

Summary Vault Community and Vault Enterprise’s “Vault” userpass method is affected by a user enumeration vulnerability. This may allow an attacker to enumerate valid usernames on this auth method through brute force or a list of known usernames. CVE-2025-6010 was reserved by HashiCorp to track th...

6.1AI score
Exploits0Affected Software1
hashicorp
hashicorp
added 2025/08/06 10:1 a.m.9 views

Vault LDAP MFA Enforcement Bypass When Using Username As Alias

Summary Vault and Vault Enterprise’s “Vault” ldap auth method may not have correctly enforced MFA if usernameasalias was set to true and a user had multiple CNs that are equal but with leading or trailing spaces. This vulnerability, CVE-2025-6013, is fixed in Vault Community Edition 1.20.2 and...

8.1CVSS6.6AI score0.00502EPSS
Exploits0Affected Software1
hashicorp
hashicorp
added 2025/08/01 5:28 p.m.11 views

Vault Login MFA Bypass of Rate Limiting and TOTP Token Reuse

Summary Vault and Vault Enterprise’s “Vault” login MFA rate limits could be bypassed and TOTP tokens could be reused. This vulnerability, CVE-2025-6015, is fixed in Vault Community Edition 1.20.1 and Vault Enterprise 1.20.1, 1.19.7, 1.18.12, and 1.16.23. Background Vault’s login MFA is the...

5.7CVSS6.4AI score0.00286EPSS
Exploits0Affected Software1
hashicorp
hashicorp
added 2025/08/01 5:24 p.m.9 views

Vault Certificate Auth Method Did Not Validate Common Name For Non-CA Certificates

Summary Vault and Vault Enterprise “Vault” TLS certificate auth method did not correctly validate client certificates when configured with a non-CA certificate as trusted certificate . In this configuration, an attacker may be able to craft a malicious certificate that could be used to impersonat...

6.8CVSS6.8AI score0.00221EPSS
Exploits0Affected Software1
hashicorp
hashicorp
added 2025/08/01 5:21 p.m.10 views

Vault TOTP Secrets Engine Code Reuse

Summary Vault and Vault Enterprise’s “Vault” TOTP Secrets Engine code validation endpoint is susceptible to code reuse within its validity period. This vulnerability, identified as CVE-2025-6014, is fixed in Vault Community Edition 1.20.1 and Vault Enterprise 1.20.1, 1.19.7, 1.18.12, and 1.16.23...

6.5CVSS6.7AI score0.00356EPSS
Exploits0Affected Software1
hashicorp
hashicorp
added 2025/08/01 5:18 p.m.7 views

Vault Userpass and LDAP User Lockout Bypass

Summary Vault and Vault Enterprise’s “Vault” user lockout feature could be bypassed for Userpass and LDAP authentication methods. This vulnerability, identified as CVE-2025-6004, is fixed in Vault Community Edition 1.20.1 and Vault Enterprise 1.20.1, 1.19.7, 1.18.12, and 1.16.23. Background Vault...

5.3CVSS6.2AI score0.00394EPSS
Exploits0Affected Software1
hashicorp
hashicorp
added 2025/08/01 5:14 p.m.9 views

Timing Side-Channel in Vault’s Userpass Auth Method

Summary A timing side channel in Vault and Vault Enterprise’s “Vault” userpass auth method allowed an attacker to distinguish between existing and non-existing users, and potentially enumerate valid usernames for Vault’s userpass auth method. This vulnerability, identified as CVE-2025-6011, is...

3.7CVSS6.1AI score0.0032EPSS
Exploits0Affected Software1
hashicorp
hashicorp
added 2025/08/01 5:11 p.m.7 views

Privileged Vault Operator May Execute Code on the Underlying Host

Summary A privileged Vault operator within the root namespace with write permission to sys/audit may obtain code execution on the underlying host if a plugin directory is set in Vault’s configuration. This vulnerability, identified as CVE-2025-6000, is fixed in Vault Community Edition 1.20.1 and...

9.1CVSS7.5AI score0.00867EPSS
Exploits0Affected Software1
hashicorp
hashicorp
added 2025/08/01 5:8 p.m.9 views

Vault Root Namespace Operator May Elevate Token Privileges

Summary A privileged Vault operator with write permissions to the root namespace’s identity endpoint could escalate their own or another user’s token privileges to Vault’s root policy. This vulnerability, identified as CVE-2025-5999, is fixed in Vault Community Edition 1.20.0 and Vault Enterprise...

7.2CVSS7AI score0.00487EPSS
Exploits0Affected Software1
hashicorp
hashicorp
added 2025/06/25 4:13 p.m.8 views

HCSEC-2025-11 Vault Vulnerable to Recovery Key Cancellation Denial of Service

Summary Vault Community and Vault Enterprise rekey and recovery key operations can lead to a denial of service due to uncontrolled cancellation by a Vault operator. This vulnerability CVE-2025-4656 has been remediated in Vault Community Edition 1.20.0 and Vault Enterprise 1.20.0, 1.19.6, 1.18.11,...

3.1CVSS6.1AI score0.00214EPSS
Exploits0Affected Software1
hashicorp
hashicorp
added 2025/06/11 1:8 p.m.7 views

Nomad Vulnerable To Incorrect ACL Policy Lookup Attached To A Job

Summary Nomad Community and Nomad Enterprise “Nomad” prefix-based ACL policy lookup can lead to incorrect rule application and shadowing. This vulnerability, identified as CVE-2025-4922, is fixed in Nomad Community Edition 1.10.2 and Nomad Enterprise 1.10.2, 1.9.10, and 1.8.14. Background Nomad...

8.1CVSS6.6AI score0.00484EPSS
Exploits0Affected Software1
hashicorp
hashicorp
added 2025/05/13 5:51 p.m.7 views

Nomad Enterprise Vulnerable To Violation Of Mandatory Sentinel Policies in Job Submissions via Policy Override

Summary Nomad Enterprise “Nomad” jobs using the policy override option are bypassing the mandatory sentinel policies. This vulnerability, identified as CVE-2025-3744, is fixed in Nomad Enterprise 1.10.1, 1.9.9, and 1.8.13. Background Nomad Enterprise uses Sentinel to augment the built-in ACL syst...

7.6CVSS6.2AI score0.00237EPSS
Exploits0Affected Software1
hashicorp
hashicorp
added 2025/05/02 2:53 p.m.6 views

Vault May Expose Sensitive Information in Error Logs When Processing Malformed Data With the KV v2 Plugin

Summary Vault Community and Vault Enterprise Key/Value kv Version 2 plugin may unintentionally expose sensitive information in server and audit logs when users submit malformed payloads during secret creation or update operations via the Vault REST API. This vulnerability, identified as...

6.5CVSS6.3AI score0.00335EPSS
Exploits0Affected Software1
hashicorp
hashicorp
added 2025/05/02 2:52 p.m.7 views

Vault’s Azure Authentication Method bound_location Restriction Could be Bypassed on Login

Summary Vault Community, Vault Enterprise “Vault” Azure Auth method did not correctly validate the claims in the Azure-issued token, resulting in the potential bypass of the boundlocations parameter on login. This vulnerability, identified as CVE-2025-3879, is fixed in Vault Community Edition...

8.8CVSS6.7AI score0.00351EPSS
Exploits0Affected Software1
hashicorp
hashicorp
added 2025/03/13 11:20 p.m.8 views

Terraform Enterprise’s Single Sign-On and Ruby SAML’s CVE-2025-25291 and CVE-2025-25292

Summary Terraform Enterprise’s single sign-on functionality is implemented using the Ruby SAML library, which disclosed two authentication bypass vulnerabilities exploitable by an XML signature wrapping attack. The vulnerabilities, CVE-2025-25291 and CVE-2025-25292, were addressed by an upgrade o...

9.8CVSS6.8AI score0.63792EPSS
Exploits3
hashicorp
hashicorp
added 2025/03/10 6:0 p.m.8 views

Nomad Exposes Sensitive Workload Identity and Client Secret Token in Audit Logs

Summary Nomad Community and Nomad Enterprise “Nomad” are vulnerable to unintentional exposure of the workload identity token and client secret token in audit logs. This vulnerability, identified as CVE-2025-1296, is fixed in Nomad Community Edition 1.9.7 and Nomad Enterprise 1.9.7, 1.8.11, and...

6.5CVSS6.7AI score0.0046EPSS
Exploits0Affected Software1
hashicorp
hashicorp
added 2025/02/20 12:26 a.m.7 views

HashiCorp Hermes Improperly Validates AWS ALB JWTs, which May Lead to Authentication Bypass

Summary Hermes versions up to 0.4.0 improperly validated the JWT provided when using the AWS ALB authentication mode, potentially allowing for authentication bypass. This vulnerability, CVE-2025-1293, was fixed in Hermes 0.5.0. Background Hermes is a document management system created by HashiCor...

8.2CVSS6AI score0.00321EPSS
Exploits0Affected Software1
hashicorp
hashicorp
added 2025/02/12 6:33 p.m.8 views

Nomad Vulnerable To Event Stream Namespace ACL Policy Bypass Through Wildcard Namespace

Summary Nomad Community and Nomad Enterprise “Nomad” event stream configured with a wildcard namespace can bypass the ACL Policy allowing reads on other namespaces. This vulnerability, identified as CVE-2025-0937, is fixed in Nomad Community Edition 1.9.6 and Nomad Enterprise 1.9.6, 1.8.10, and...

7.1CVSS7AI score0.0043EPSS
Exploits0Affected Software1
hashicorp
hashicorp
added 2025/01/21 3:24 p.m.8 views

HashiCorp go-slug Vulnerable to Zip Slip Attack

Summary HashiCorp’s go-slug library is vulnerable to a zip-slip style attack when a non-existing user-provided path is extracted from the tar entry. This vulnerability, identified as CVE-2025-0377, is fixed in go-slug 0.16.3. Background HashiCorp’s go-slug shared library offers functions for...

9.1CVSS7AI score0.00667EPSS
Exploits0Affected Software1
hashicorp
hashicorp
added 2024/12/20 1:47 a.m.8 views

Nomad Allocations Vulnerable To Privilege Escalation Within A Namespace Using Unredacted Workload Identity Token

Summary Nomad Community and Nomad Enterprise “Nomad” allocations are vulnerable to privilege escalation within a namespace through unredacted workload identity tokens. This vulnerability, identified as CVE-2024-12678, is fixed in Nomad Community Edition 1.9.4 and Nomad Enterprise 1.9.4, 1.8.8, an...

6.5CVSS6.6AI score0.00541EPSS
Exploits0Affected Software1
hashicorp
hashicorp
added 2024/12/12 10:38 p.m.20 views

Boundary Controller Incorrectly Handles HTTP Requests On Initialization Which May Lead to a Denial of Service

Summary Boundary Community Edition and Boundary Enterprise “Boundary” incorrectly handles HTTP requests during the initialization of the Boundary controller, potentially causing the Boundary server to terminate prematurely or allow an attacker to perform a denial of service attack. Boundary is on...

5.9CVSS6.1AI score0.00378EPSS
Exploits0Affected Software1
hashicorp
hashicorp
added 2024/11/07 10:15 p.m.9 views

Nomad Vulnerable To Cross-Namespace Volume Creation Abusing CSI Write Permission

Summary Nomad Community and Nomad Enterprise “Nomad” volume specification is vulnerable to arbitrary cross-namespace volume creation through unauthorized Container Storage Interface CSI volume writes. This vulnerability, identified as CVE-2024-10975, is fixed in Nomad Community Edition 1.9.2 and...

7.7CVSS7AI score0.00456EPSS
Exploits0Affected Software1
Total number of security vulnerabilities189