Описание
HashiCorp Nomad and Nomad Enterprise 1.5.0 allow a job submitter to escalate to management-level privileges using workload identity and task API. Fixed in 1.5.1.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | ignored | end of standard support, was needs-triage |
| esm-apps/bionic | needs-triage | |
| esm-apps/focal | needs-triage | |
| focal | ignored | end of standard support, was needs-triage |
| jammy | DNE | |
| kinetic | DNE | |
| trusty | ignored | end of standard support |
| upstream | needs-triage | |
| xenial | ignored | end of standard support |
Показывать по
10
7.4 High
CVSS3
Связанные уязвимости
CVSS3: 7.4
nvd
почти 3 года назад
HashiCorp Nomad and Nomad Enterprise 1.5.0 allow a job submitter to escalate to management-level privileges using workload identity and task API. Fixed in 1.5.1.
CVSS3: 7.4
debian
почти 3 года назад
HashiCorp Nomad and Nomad Enterprise 1.5.0 allow a job submitter to es ...
CVSS3: 8.8
github
почти 3 года назад
Nomad Job Submitter Privilege Escalation Using Workload Identity
7.4 High
CVSS3