github.com/hashicorp/nomad is vulnerable to privilege escalation. The vulnerability exists as nomad improperly invokes the raw_exec driver even if it was disabled on the client, allowing an authorized user to run a task with higher privileges.
raw_exec