github.com/hashicorp/nomad is vulnerable to privilege escalation. The role and region associated with TLS certificates that are used for the mTLS RPC are not properly validated, allowing an attacker to obtain unauthorized access with a malicious TLS certificate.
CPE | Name | Operator | Version |
---|---|---|---|
github.com/hashicorp/nomad | le | 0.10.2-rc1 |