Описание
Nomad Community and Nomad Enterprise (“Nomad”) are vulnerable to unintentional exposure of the workload identity token and client secret token in audit logs. This vulnerability, identified as CVE-2025-1296, is fixed in Nomad Community Edition 1.9.7 and Nomad Enterprise 1.9.7, 1.8.11, and 1.7.19.
Уязвимые конфигурации
Одно из
EPSS
6.5 Medium
CVSS3
Дефекты
Связанные уязвимости
Nomad Community and Nomad Enterprise (“Nomad”) are vulnerable to unintentional exposure of the workload identity token and client secret token in audit logs. This vulnerability, identified as CVE-2025-1296, is fixed in Nomad Community Edition 1.9.7 and Nomad Enterprise 1.9.7, 1.8.11, and 1.7.19.
Nomad Community and Nomad Enterprise (\u201cNomad\u201d) are vulnerabl ...
Nomad is vulnerable to unintentional exposure of the workload identity token and client secret token in audit logs
Уязвимость оркестратора приложений Nomad, связанная с раскрытием информации через регистрационные файлы, позволяющая нарушителю получить доступ к секретному токену клиента
EPSS
6.5 Medium
CVSS3