Approved changes feed: RSS · Atom
cpe:2.3:a:hashicorp:nomad:*:*:*:*:*:*:*:*
part: a version: * update: *
| Vendor | Hashicorp (dc524c16-6a01-528e-a41c-9d3e02e5e4a3) |
|---|---|
| Product | Nomad (a46c08bf-7a98-575f-8bcd-ce3372ba85ca) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from purl2cpe mapping |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
pkg:deb/debian/nomad |
purl2cpe | 2026-06-01 10:14:56.993655 |
pkg:deb/ubuntu/nomad |
purl2cpe | 2026-06-01 10:14:56.993657 |
pkg:github/hashicorp/nomad |
purl2cpe | 2026-06-01 10:14:56.993658 |
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2026-7474 |
vulnerable | 2026-06-03 15:27:56.870182 |
Nomad vulnerable to path traversal in dynamic host volume which may lead to code execution
HIGH (8.8)
HashiCorp Nomad and Nomad Enterprise prior to 2.0.1 are vulnerable to code execution on the client host through a path traversal attack. This vulnerability (CVE-2026-7474) is fixed in Nomad 2.0.1, 1.11.5 and 1.10.11.
Published: 2026-05-12T19:09:44.680Z
Updated: 2026-05-13T03:58:40.530Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2026-6959 |
vulnerable | 2026-06-03 15:27:55.926038 |
Nomad vulnerable to arbitrary file read/write on client host through symlink attack
MEDIUM (6)
HashiCorp Nomad and Nomad Enterprise prior to 2.0.1 are vulnerable to arbitrary file read and write on the client host as the Nomad process user through a symlink attack. This vulnerability (CVE-2026-6959) is fixed in Nomad 2.0.1, 1.11.5 and 1.10.11.
Published: 2026-05-12T18:59:09.029Z
Updated: 2026-05-12T20:16:15.200Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-4922 |
vulnerable | 2026-06-03 15:01:48.972211 |
Nomad Vulnerable To Incorrect ACL Policy Lookup Attached To A Job
HIGH (8.1)
Nomad Community and Nomad Enterprise (“Nomad”) prefix-based ACL policy lookup can lead to incorrect rule application and shadowing. This vulnerability, identified as CVE-2025-4922, is fixed in Nomad Community Edition 1.10.2 and Nomad Enterprise 1.10.2, 1.9.10, and 1.8.14.
Published: 2025-06-11T13:24:18.976Z
Updated: 2025-06-11T13:53:55.809Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-1296 |
vulnerable | 2026-06-03 14:59:04.983488 |
Nomad Exposes Sensitive Workload Identity and Client Secret Token in Audit Logs
MEDIUM (6.5)
Nomad Community and Nomad Enterprise (“Nomad”) are vulnerable to unintentional exposure of the workload identity token and client secret token in audit logs. This vulnerability, identified as CVE-2025-1296, is fixed in Nomad Community Edition 1.9.7 and Nomad Enterprise 1.9.7, 1.8.11, and 1.7.19.
Published: 2025-03-10T18:02:21.579Z
Updated: 2025-03-11T20:18:55.186Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-0937 |
vulnerable | 2026-06-03 14:58:33.277085 |
Nomad Vulnerable To Event Stream Namespace ACL Policy Bypass Through Wildcard Namespace
HIGH (7.1)
Nomad Community and Nomad Enterprise ("Nomad") event stream configured with a wildcard namespace can bypass the ACL Policy allowing reads on other namespaces.
Published: 2025-02-12T18:59:25.011Z
Updated: 2025-02-12T19:32:54.537Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-7625 |
vulnerable | 2026-06-03 14:58:06.563294 |
Nomad Vulnerable to Allocation Directory Escape On Non-Existing File Paths Through Archive Unpacking
MEDIUM (5.8)
In HashiCorp Nomad and Nomad Enterprise from 0.6.1 up to 1.6.13, 1.7.10, and 1.8.2, the archive unpacking process is vulnerable to writes outside the allocation directory during migration of allocation directories when multiple archive headers target the same file. This vulnerability, CVE-2024-7625, is fixed in Nomad 1.6.14, 1.7.11, and 1.8.3. Access or compromise of the Nomad client agent at the source allocation first is a prerequisite for leveraging this vulnerability.
Published: 2024-08-14T23:20:17.888Z
Updated: 2025-01-09T19:19:01.219Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-6717 |
vulnerable | 2026-06-03 14:58:03.940810 |
Nomad Vulnerable to Allocation Directory Path Escape Through Archive Unpacking
HIGH (7.7)
HashiCorp Nomad and Nomad Enterprise 1.6.12 up to 1.7.9, and 1.8.1 archive unpacking during migration is vulnerable to path escaping of the allocation directory. This vulnerability, CVE-2024-6717, is fixed in Nomad 1.6.13, 1.7.10, and 1.8.2.
Published: 2024-07-23T00:16:20.955Z
Updated: 2024-08-01T21:41:04.313Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-1329 |
vulnerable | 2026-06-03 14:54:26.707163 |
Nomad Vulnerable to Arbitrary Write Through Symlink Attack
HIGH (7.7)
HashiCorp Nomad and Nomad Enterprise 1.5.13 up to 1.6.6, and 1.7.3 template renderer is vulnerable to arbitrary file write on the host as the Nomad client user through symlink attacks. This vulnerability, CVE-2024-1329, is fixed in Nomad 1.7.4, 1.6.7, and 1.5.14.
Published: 2024-02-08T19:20:10.831Z
Updated: 2024-09-26T17:05:43.601Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-12678 |
vulnerable | 2026-06-03 14:54:22.958399 |
Nomad Allocations Vulnerable To Privilege Escalation Within A Namespace Using Unredacted Workload Identity Tokens
MEDIUM (6.5)
Nomad Community and Nomad Enterprise ("Nomad") allocations are vulnerable to privilege escalation within a namespace through unredacted workload identity tokens. This vulnerability, identified as CVE-2024-12678, is fixed in Nomad Community Edition 1.9.4 and Nomad Enterprise 1.9.4, 1.8.8, and 1.7.16.
Published: 2024-12-20T01:49:40.583Z
Updated: 2024-12-20T17:08:12.684Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-10975 |
vulnerable | 2026-06-03 14:54:13.099161 |
Nomad Vulnerable To Cross-Namespace Volume Creation Abusing CSI Write Permission
HIGH (7.7)
Nomad Community and Nomad Enterprise ("Nomad") volume specification is vulnerable to arbitrary cross-namespace volume creation through unauthorized Container Storage Interface (CSI) volume writes. This vulnerability, identified as CVE-2024-10975, is fixed in Nomad Community Edition 1.9.2 and Nomad Enterprise 1.9.2, 1.8.7, and 1.7.15.
Published: 2024-11-07T21:04:43.804Z
Updated: 2024-11-07T21:22:50.668Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-3300 |
vulnerable | 2026-06-03 14:52:40.382710 |
Nomad Search API Leaks Information About CSI Plugins
MEDIUM (5.3)
HashiCorp Nomad and Nomad Enterprise 0.11.0 up to 1.5.6 and 1.4.1 HTTP search API can reveal names of available CSI plugins to unauthenticated users or users without the plugin:read policy. Fixed in 1.6.0, 1.5.7, and 1.4.1.
Published: 2023-07-19T23:35:26.153Z
Updated: 2024-10-24T19:48:48.228Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-3072 |
vulnerable | 2026-06-03 14:52:39.834926 |
Nomad ACL Policies without Label are Applied to Unexpected Resources
MEDIUM (4.1)
HashiCorp Nomad and Nomad Enterprise 0.7.0 up to 1.5.6 and 1.4.10 ACL policies using a block without a label generates unexpected results. Fixed in 1.6.0, 1.5.7, and 1.4.11.
Published: 2023-07-19T23:34:56.155Z
Updated: 2024-10-17T14:10:16.427Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-1782 |
vulnerable | 2026-06-03 14:48:56.495254 |
Nomad Unauthenticated Client Agent HTTP Request Privilege Escalation
CRITICAL (10)
HashiCorp Nomad and Nomad Enterprise versions 1.5.0 up to 1.5.2 allow unauthenticated users to bypass intended ACL authorizations for clusters where mTLS is not enabled. This issue is fixed in version 1.5.3.
Published: 2023-04-05T19:10:52.697Z
Updated: 2025-02-10T16:27:03.209Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-1299 |
vulnerable | 2026-06-03 14:48:54.255768 |
Nomad Job Submitter Privilege Escalation Using Workload Identity
HIGH (7.4)
HashiCorp Nomad and Nomad Enterprise 1.5.0 allow a job submitter to escalate to management-level privileges using workload identity and task API. Fixed in 1.5.1.
Published: 2023-03-14T14:46:41.456Z
Updated: 2025-02-27T15:27:31.165Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-1296 |
vulnerable | 2026-06-03 14:48:54.236727 |
Nomad ACLs Can Not Deny Access to Workload's Own Variables
LOW (2.7)
HashiCorp Nomad and Nomad Enterprise 1.4.0 up to 1.5.0 did not correctly enforce deny policies applied to a workload’s variables. Fixed in 1.4.6 and 1.5.1.
Published: 2023-03-14T14:45:24.074Z
Updated: 2025-02-27T15:28:15.947Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-0821 |
vulnerable | 2026-06-03 14:48:52.922434 |
Nomad Client Vulnerable to Decompression Bombs in Artifact Block
MEDIUM (6.5)
HashiCorp Nomad and Nomad Enterprise 1.2.15 up to 1.3.8, and 1.4.3 jobs using a maliciously compressed artifact stanza source can cause excessive disk usage. Fixed in 1.2.16, 1.3.9, and 1.4.4.
Published: 2023-02-16T21:23:24.500Z
Updated: 2025-03-18T14:35:44.335Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2022-3867 |
vulnerable | 2026-06-03 14:47:59.438902 |
Nomad Event Stream Subscriber Using a Token with TTL Receives Updates Until Garbage Collected
LOW (2.7)
HashiCorp Nomad and Nomad Enterprise 1.4.0 up to 1.4.1 event stream subscribers using a token with TTL receive updates until token garbage is collected. Fixed in 1.4.2.
Published: 2022-11-10T05:45:53.550Z
Updated: 2025-05-01T19:04:09.365Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2022-3866 |
vulnerable | 2026-06-03 14:47:59.434336 |
Nomad Workload Identity Token Can List Non-sensitive Metadata for Paths Under nomad/
MEDIUM (5)
HashiCorp Nomad and Nomad Enterprise 1.4.0 up to 1.4.1 workload identity token can list non-sensitive metadata for paths under nomad/ that belong to other jobs in the same namespace. Fixed in 1.4.2.
Published: 2022-11-10T05:34:52.468Z
Updated: 2025-05-01T19:05:00.374Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-7956 |
vulnerable | 2026-06-03 14:43:07.786460 |
Details available
HashiCorp Nomad and Nomad Enterprise up to 0.10.2 incorrectly validated role/region associated with TLS certificates used for mTLS RPC, and were susceptible to privilege escalation. Fixed in 0.10.3.
Published: 2020-01-31T12:43:52.000Z
Updated: 2024-08-04T09:48:24.592Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-10944 |
vulnerable | 2026-06-03 14:41:00.754975 |
Details available
HashiCorp Nomad and Nomad Enterprise up to 0.10.4 contained a cross-site scripting vulnerability such that files from a malicious workload could cause arbitrary JavaScript to execute in the web UI. Fixed in 0.10.5.
Published: 2020-04-28T13:29:50.000Z
Updated: 2024-08-04T11:21:14.350Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2019-12618 |
vulnerable | 2026-06-03 14:39:35.120633 |
Details available
HashiCorp Nomad 0.9.0 through 0.9.1 has Incorrect Access Control via the exec driver.
Published: 2019-08-12T16:49:04.000Z
Updated: 2024-08-04T23:24:39.200Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.