cbcvebase.
CVE-2025-3744
published 2025-05-13

CVE-2025-3744: Nomad Enterprise (“Nomad”) jobs using the policy override option are bypassing the mandatory sentinel policies. This vulnerability, identified as…

PriorityP344high7.6CVSS 3.1
AVNACLPRLUINSUCLIHAL
EPSS
0.24%
14.6th percentile
Nomad Enterprise (“Nomad”) jobs using the policy override option are bypassing the mandatory sentinel policies. This vulnerability, identified as CVE-2025-3744, is fixed in Nomad Enterprise 1.10.1, 1.9.9, and 1.8.13.

Affected

5 ranges
VendorProductVersion rangeFixed in
hashicorpnomad< 1.8.131.8.13
hashicorpnomad
hashicorpnomad>= 1.9.0 < 1.9.91.9.9
hashicorpnomad_enterprise< 1.10.11.10.1
msrccm1_kernel_5.10.102.1-1_on_cbl_mariner_1.0

CVSS provenance

nvdv3.17.6HIGHCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:L
vendor_msrc5.5MEDIUM
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.