Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2021-43415

HashiCorp Nomad and Nomad Enterprise up to 1.0.13, 1.1.7, and 1.2.0, with the QEMU task driver enabled, allowed authenticated users with job submission capabilities to bypass the configured allowed image paths. Fixed in 1.0.14, 1.1.8, and 1.2.1.

Published

2021-12-03T22:15:07.757

Last Modified

2024-11-21T06:29:11.990

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 8.8 (HIGH)

CVSSv2 Vector

AV:N/AC:M/Au:S/C:P/I:P/A:P

Access Vector: NETWORK
Access Complexity: MEDIUM
Authentication: SINGLE
Confidentiality Impact: PARTIAL
Integrity Impact: PARTIAL
Availability Impact: PARTIAL

Exploitability Score

6.8

Impact Score

6.4

Weaknesses

Type: Primary
NVD-CWE-Other

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	hashicorp	nomad	< 1.0.14	Yes
Application	hashicorp	nomad	< 1.0.14	Yes
Application	hashicorp	nomad	< 1.1.8	Yes
Application	hashicorp	nomad	< 1.1.8	Yes
Application	hashicorp	nomad	1.2.0	Yes
Application	hashicorp	nomad	1.2.0	Yes

References

https://discuss.hashicorp.com/t/hcsec-2021-31-nomad-qemu-task-driver-allowed-paths-bypass-with-job-args/32288 Mitigation, Vendor Advisory ([email protected])
https://www.hashicorp.com/blog/category/nomad Product, Vendor Advisory ([email protected])
https://discuss.hashicorp.com/t/hcsec-2021-31-nomad-qemu-task-driver-allowed-paths-bypass-with-job-args/32288 Mitigation, Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://www.hashicorp.com/blog/category/nomad Product, Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)