Skip to content Skip to sidebar Skip to footer

CVE-2020-27195 – HashiCorp Nomad and Nomad Enterprise version 0.9.0 up to 0.12.5 client fi

HashiCorp Nomad and Nomad Enterprise version 0.9.0 up to 0.12.5 client file sandbox feature can be subverted using either the template or artifact stanzas. Fixed in 0.12.6, 0.11.5, and 0.10.6

 

Source: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27195

Reference (s):

  • https://github.com/hashicorp/nomad/blob/master/CHANGELOG.md#0126-october-21-2020
  • https://www.nomadproject.io/downloads

Sign Up to Our Newsletter

Be the first to know the latest updates