Hashicorp: >> Nomad >> 0.8.6 Security Vulnerabilities
HashiCorp Nomad and Nonad Enterprise up to 0.10.2 HTTP/RPC services allowed unbounded resource usage, and were susceptible to unauthenticated denial of service. Fixed in 0.10.3.
CVSS Score
7.5
EPSS Score
0.008
Published
2020-01-31
HashiCorp Nomad and Nomad Enterprise up to 0.10.2 incorrectly validated role/region associated with TLS certificates used for mTLS RPC, and were susceptible to privilege escalation. Fixed in 0.10.3.
CVSS Score
9.8
EPSS Score
0.002
Published
2020-01-31
Page 2