github.com/hashicorp/nomad is vulnerable to information disclosure. The workload identity token lists non-sensitive metadata for paths under nomad/
that belong to other jobs in the same namespace, which allows a remote authenticated attacker to access information which may provide context they otherwise might not have.
CPE | Name | Operator | Version |
---|---|---|---|
github.com/hashicorp/nomad | le | v1.4.1 | |
github.com/hashicorp/nomad | le | v1.4.1 |
discuss.hashicorp.com/t/hcsec-2022-25-nomad-s-workload-identity-token-can-list-non-sensitive-metadata-for-nomad-paths/46167
github.com/hashicorp/nomad/commit/4615278d5897a927f43908dc2da9066692f9bede
github.com/hashicorp/nomad/issues/15012
github.com/hashicorp/nomad/pull/14997
github.com/hashicorp/nomad/releases/tag/v1.4.2