HashiCorp Nomad and Nomad Enterprise up to 0.12.9 exec and java task drivers can access processes associated with other tasks on the same node. Fixed in 0.12.10, and 1.0.3.
References
Link | Resource |
---|---|
https://discuss.hashicorp.com/t/hcsec-2021-01-nomad-s-exec-and-java-task-drivers-did-not-isolate-processes/20332 | Vendor Advisory |
Configurations
Configuration 1 (hide)
|
History
04 Feb 2021, 20:53
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:a:hashicorp:nomad:*:*:*:*:enterprise:*:*:* cpe:2.3:a:hashicorp:nomad:*:*:*:*:-:*:*:* |
|
CWE | NVD-CWE-noinfo | |
CVSS |
v2 : v3 : |
v2 : 5.0
v3 : 7.5 |
References | (MISC) https://discuss.hashicorp.com/t/hcsec-2021-01-nomad-s-exec-and-java-task-drivers-did-not-isolate-processes/20332 - Vendor Advisory |
01 Feb 2021, 16:22
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2021-02-01 16:15
Updated : 2023-12-10 13:41
NVD link : CVE-2021-3283
Mitre link : CVE-2021-3283
CVE.ORG link : CVE-2021-3283
JSON object : View
Products Affected
hashicorp
- nomad
CWE