CVE-2021-43415
published 2021-12-03CVE-2021-43415: HashiCorp Nomad and Nomad Enterprise up to 1.0.13, 1.1.7, and 1.2.0, with the QEMU task driver enabled, allowed authenticated users with job submission…
PriorityP348high8.8CVSS 3.1
AVNACLPRLUINSUCHIHAH
EPSS
1.18%
63.9th percentile
HashiCorp Nomad and Nomad Enterprise up to 1.0.13, 1.1.7, and 1.2.0, with the QEMU task driver enabled, allowed authenticated users with job submission capabilities to bypass the configured allowed image paths. Fixed in 1.0.14, 1.1.8, and 1.2.1.
Affected
6 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| github.com | hashicorp_nomad | >= 0 < 1.0.14 | 1.0.14 |
| github.com | hashicorp_nomad | >= 1.1.0 < 1.1.8 | 1.1.8 |
| github.com | hashicorp_nomad | >= 1.2.0 < 1.2.1 | 1.2.1 |
| hashicorp | nomad | — | — |
| hashicorp | nomad | >= 1.0.0 < 1.0.14 | 1.0.14 |
| hashicorp | nomad | >= 1.1.0 < 1.1.8 | 1.1.8 |
CVSS provenance
nvdv3.18.8HIGHCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
nvdv2.06.0MEDIUMAV:N/AC:M/Au:S/C:P/I:P/A:P
osv8.8HIGH
vendor_redhat8.8HIGH
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
OSV
Improper Authentication in HashiCorp Nomad in github.com/hashicorp/nomad
osv·2024-08-21
CVE-2021-43415 Improper Authentication in HashiCorp Nomad in github.com/hashicorp/nomad
Improper Authentication in HashiCorp Nomad in github.com/hashicorp/nomad
Improper Authentication in HashiCorp Nomad in github.com/hashicorp/nomad
GHSA
Improper Authentication in HashiCorp Nomad
ghsa·2021-12-10
CVE-2021-43415 [HIGH] CWE-287 Improper Authentication in HashiCorp Nomad
Improper Authentication in HashiCorp Nomad
HashiCorp Nomad and Nomad Enterprise up to 1.0.13, 1.1.7, and 1.2.0, with the QEMU task driver enabled, allowed authenticated users with job submission capabilities to bypass the configured allowed image paths. Fixed in 1.0.14, 1.1.8, and 1.2.1.
OSV
Improper Authentication in HashiCorp Nomad
osv·2021-12-10
CVE-2021-43415 [HIGH] Improper Authentication in HashiCorp Nomad
Improper Authentication in HashiCorp Nomad
HashiCorp Nomad and Nomad Enterprise up to 1.0.13, 1.1.7, and 1.2.0, with the QEMU task driver enabled, allowed authenticated users with job submission capabilities to bypass the configured allowed image paths. Fixed in 1.0.14, 1.1.8, and 1.2.1.
OSV
CVE-2021-43415: HashiCorp Nomad and Nomad Enterprise up to 1
osv·2021-12-03·CVSS 8.8
CVE-2021-43415 [HIGH] CVE-2021-43415: HashiCorp Nomad and Nomad Enterprise up to 1
HashiCorp Nomad and Nomad Enterprise up to 1.0.13, 1.1.7, and 1.2.0, with the QEMU task driver enabled, allowed authenticated users with job submission capabilities to bypass the configured allowed image paths. Fixed in 1.0.14, 1.1.8, and 1.2.1.
Red Hat
nomad: QEMU task driver allowed paths bypass with job args
vendor_redhat·2021-11-21·CVSS 8.8
CVE-2021-43415 [HIGH] CWE-287 nomad: QEMU task driver allowed paths bypass with job args
nomad: QEMU task driver allowed paths bypass with job args
HashiCorp Nomad and Nomad Enterprise up to 1.0.13, 1.1.7, and 1.2.0, with the QEMU task driver enabled, allowed authenticated users with job submission capabilities to bypass the configured allowed image paths. Fixed in 1.0.14, 1.1.8, and 1.2.1.
Package: multicluster-engine (Red Hat Advanced Cluster Management for Kubernetes 2) - Not affected
Package: rhacm2/cluster-curator-controller-rhel8 (Red Hat Advanced Cluster Management for Kubernetes 2) - Not affected
Package: rhacm2/clusterlifecycle-state-metrics-rhel8 (Red Hat Advanced Cluster Management for Kubernetes 2) - Not affected
Package: rhacm2/multicloud-manager-rhel8 (Red Hat Advanced Cluster Management for Kubernetes 2) - Not affected
Package: rhacm2/multiclusterhub-rhel8
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
https://discuss.hashicorp.com/t/hcsec-2021-31-nomad-qemu-task-driver-allowed-paths-bypass-with-job-args/32288https://www.hashicorp.com/blog/category/nomadhttps://discuss.hashicorp.com/t/hcsec-2021-31-nomad-qemu-task-driver-allowed-paths-bypass-with-job-args/32288https://www.hashicorp.com/blog/category/nomad
2021-12-03
Published