cbcvebase.

Github.Com Hashicorp Nomad vulnerabilities

34 known vulnerabilities affecting github.com/hashicorp_nomad.

Total CVEs
34
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL3HIGH14MEDIUM14LOW3

Vulnerabilities

Page 1 of 2
CVE-2026-7474P2HIGHCVSS 8.8≥ 0, < 1.11.0-rc.1.0.20260511152149-cd7240c4099a2026-05-12
CVE-2026-7474 [HIGH] CWE-22 HashiCorp Nomad vulnerable to a path traversal HashiCorp Nomad vulnerable to a path traversal HashiCorp Nomad and Nomad Enterprise prior to 2.0.1 are vulnerable to code execution on the client host through a path traversal attack. This vulnerability (CVE-2026-7474) is fixed in Nomad 2.0.1, 1.11.5 and 1.10.11.
ghsa
CVE-2023-1299P3HIGHCVSS 8.8≥ 1.5.0, < 1.5.12023-03-14
CVE-2023-1299 [HIGH] Nomad Job Submitter Privilege Escalation Using Workload Identity Nomad Job Submitter Privilege Escalation Using Workload Identity ### Summary A vulnerability was identified in Nomad and Nomad Enterprise (“Nomad”) such that a user with the submit-job ACL capability can submit a job that can escalate to management-level privileges. This vulnerability, CVE-2023-1299, was introduced in Nomad 1.5.0 and fixed in Nomad 1.5.1. ### Background Nomad 1.4.0 introduced the concept of w
ghsaosv
CVE-2023-1782P3HIGH≥ 1.5.0, < 1.5.32023-04-05
CVE-2023-1782 [HIGH] CWE-285 HashiCorp Nomad vulnerable to unauthenticated client agent HTTP request privilege escalation HashiCorp Nomad vulnerable to unauthenticated client agent HTTP request privilege escalation HashiCorp Nomad and Nomad Enterprise versions 1.5.0 up to 1.5.2 allow unauthenticated users to bypass intended ACL authorizations for clusters where mTLS is not enabled. This issue is fixed in version 1.5.3.
ghsaosv
CVE-2020-27195P3CRITICAL≥ 0.9.0, < 0.10.6≥ 0.11.0, < 0.11.5+1 more2022-02-15
CVE-2020-27195 [CRITICAL] CWE-416 Use After Free in HashiCorp Nomad Use After Free in HashiCorp Nomad HashiCorp Nomad and Nomad Enterprise version 0.9.0 up to 0.12.5 client file sandbox feature can be subverted using either the template or artifact stanzas. Fixed in 0.12.6, 0.11.5, and 0.10.6
ghsaosv
CVE-2024-6717P3HIGHCVSS 8.6≥ 0, < 1.8.22024-07-23
CVE-2024-6717 [HIGH] CWE-610 HashiCorp Nomad is vulnerable to path escape through archive unpacking during migration HashiCorp Nomad is vulnerable to path escape through archive unpacking during migration HashiCorp Nomad and Nomad Enterprise 1.6.12 up to 1.7.9, and 1.8.1 archive unpacking during migration is vulnerable to path escaping of the allocation directory. This vulnerability, CVE-2024-6717, is fixed in Nomad 1.6.13, 1.7.10, and 1.8.2.
ghsaosv
CVE-2025-4922P3HIGHCVSS 8.1≥ 0, < 1.10.22025-06-11
CVE-2025-4922 [HIGH] CWE-266 Hashicorp Nomad Incorrect Privilege Assignment vulnerability Hashicorp Nomad Incorrect Privilege Assignment vulnerability Nomad Community and Nomad Enterprise (“Nomad”) prefix-based ACL policy lookup can lead to incorrect rule application and shadowing. This vulnerability, identified as CVE-2025-4922, is fixed in Nomad Community Edition 1.10.2 and Nomad Enterprise 1.10.2, 1.9.10, and 1.8.14.
ghsaosv
CVE-2022-30324P3CRITICAL≥ 0.2.0, < 1.1.14≥ 1.2.0, < 1.2.8+1 more2022-06-03
CVE-2022-30324 [CRITICAL] Privilege escalation in Hashicorp Nomad Privilege escalation in Hashicorp Nomad HashiCorp Nomad and Nomad Enterprise version 0.2.0 up to 1.3.0 were impacted by go-getter vulnerabilities enabling privilege escalation through the artifact stanza in submitted jobs onto the client agent host. Fixed in 1.1.14, 1.2.8, and 1.3.1.
ghsaosv
CVE-2021-37218P3HIGH≥ 0, < 1.0.10≥ 1.1.0, < 1.1.42021-09-08
CVE-2021-37218 [HIGH] CWE-295 Privilege escalation in Hashicorp Nomad Privilege escalation in Hashicorp Nomad HashiCorp Nomad and Nomad Enterprise Raft RPC layer allows non-server agents with a valid certificate signed by the same CA to access server-only functionality, enabling privilege escalation. Fixed in 1.0.10 and 1.1.4.
ghsaosv
CVE-2021-43415P3HIGH≥ 0, < 1.0.14≥ 1.1.0, < 1.1.8+1 more2021-12-10
CVE-2021-43415 [HIGH] CWE-287 Improper Authentication in HashiCorp Nomad Improper Authentication in HashiCorp Nomad HashiCorp Nomad and Nomad Enterprise up to 1.0.13, 1.1.7, and 1.2.0, with the QEMU task driver enabled, allowed authenticated users with job submission capabilities to bypass the configured allowed image paths. Fixed in 1.0.14, 1.1.8, and 1.2.1.
ghsaosv
CVE-2019-12618P3CRITICAL≥ 0.9.0, < 0.9.22022-05-24
CVE-2019-12618 [CRITICAL] CWE-269 Hashicorp Nomad Access Control Issues Hashicorp Nomad Access Control Issues HashiCorp Nomad 0.9.0 through 0.9.1 has Incorrect Access Control via the exec driver.
ghsaosv
CVE-2024-10975P3HIGHCVSS 7.7≥ 0, ≤ 1.9.12024-11-07
CVE-2024-10975 [HIGH] CWE-863 Hashicorp Nomad Incorrect Authorization vulnerability Hashicorp Nomad Incorrect Authorization vulnerability Nomad Community and Nomad Enterprise ("Nomad") volume specification is vulnerable to arbitrary cross-namespace volume creation through unauthorized Container Storage Interface (CSI) volume writes. This vulnerability, identified as CVE-2024-10975, is fixed in Nomad Community Edition 1.9.2 and Nomad Enterprise 1.9.2, 1.8.7, and 1.7.15.
ghsaosv
CVE-2022-24683P3HIGH≥ 0.9.2, < 1.0.18≥ 1.1.0, < 1.1.12+1 more2022-02-18
CVE-2022-24683 [HIGH] CWE-22 Arbitrary file reads in HashiCorp Nomad Arbitrary file reads in HashiCorp Nomad Nomad is an easy-to-use, flexible, and performant workload orchestrator that can deploy a mix of microservice, batch, containerized, and non-containerized applications. HashiCorp Nomad and Nomad Enterprise 0.9.2 through 1.0.17, 1.1.11, and 1.2.5 allow operators with read-fs and alloc-exec (or job-submit) capabilities to read arbitrary files on the host filesystem as root. There are curre
ghsaosv
CVE-2024-1329P3HIGH≥ 1.5.13, < 1.5.14≥ 1.6.0, < 1.6.7+1 more2024-02-08
CVE-2024-1329 [HIGH] CWE-59 HashiCorp Nomad vulnerable to symlink attacks HashiCorp Nomad vulnerable to symlink attacks HashiCorp Nomad and Nomad Enterprise 1.5.13 up to 1.6.6, and 1.7.3 template renderer is vulnerable to arbitrary file write on the host as the Nomad client user through symlink attacks. Fixed in Nomad 1.7.4, 1.6.7, 1.5.14.
ghsaosv
CVE-2020-7956P3HIGH≥ 0, < 0.10.32021-05-18
CVE-2020-7956 [HIGH] CWE-295 Improper Certificate Validation in HashiCorp Nomad Improper Certificate Validation in HashiCorp Nomad HashiCorp Nomad and Nomad Enterprise up to 0.10.2 incorrectly validated role/region associated with TLS certificates used for mTLS RPC, and were susceptible to privilege escalation. Fixed in 0.10.3.
ghsaosv
CVE-2021-3283P3HIGH≥ 1.0.0, < 1.0.3≥ 0, < 0.12.102021-06-24
CVE-2021-3283 [HIGH] CWE-269 Improper Privilege Management in HashiCorp Nomad Improper Privilege Management in HashiCorp Nomad HashiCorp Nomad and Nomad Enterprise up to 0.12.9 exec and java task drivers can access processes associated with other tasks on the same node. Fixed in 0.12.10, and 1.0.3.
ghsaosv
CVE-2024-12678P3MEDIUMCVSS 6.5≥ 0, < 1.9.42024-12-20
CVE-2024-12678 [MEDIUM] CWE-266 Hashicorp Nomad Incorrect Privilege Assignment vulnerability Hashicorp Nomad Incorrect Privilege Assignment vulnerability Nomad Community and Nomad Enterprise ("Nomad") allocations are vulnerable to privilege escalation within a namespace through unredacted workload identity tokens. This vulnerability, identified as CVE-2024-12678, is fixed in Nomad Community Edition 1.9.4 and Nomad Enterprise 1.9.4, 1.8.8, and 1.7.16.
ghsaosv
CVE-2025-1296P3MEDIUMCVSS 6.5≥ 0, ≤ 1.9.62025-03-10
CVE-2025-1296 [MEDIUM] CWE-532 Nomad is vulnerable to unintentional exposure of the workload identity token and client secret token in audit logs Nomad is vulnerable to unintentional exposure of the workload identity token and client secret token in audit logs Nomad Community and Nomad Enterprise (“Nomad”) are vulnerable to unintentional exposure of the workload identity token and client secret token in audit logs. This vulnerability, identified as CVE-2025-1296, is fixed in Nomad Community Edi
ghsaosv
CVE-2020-28348P3MEDIUM≥ 0.9.0, < 0.10.8≥ 0.11.0-beta1, < 0.11.7+1 more2022-02-15
CVE-2020-28348 [MEDIUM] CWE-22 Path Traversal in HashiCorp Nomad Path Traversal in HashiCorp Nomad HashiCorp Nomad and Nomad Enterprise 0.9.0 up to 0.12.7 client Docker file sandbox feature (github.com/hashicorp/nomad/drivers/docker) may be subverted when not explicitly disabled or when using a volume mount type. Fixed in 0.12.8, 0.11.7, and 0.10.8.
ghsaosv
CVE-2022-24685P3HIGH≥ 1.0.0, < 1.0.17≥ 1.1.0, < 1.1.12+1 more2022-03-01
CVE-2022-24685 [HIGH] CWE-770 HashiCorp Nomad vulnerable to Allocation of Resources Without Limits or Throttling HashiCorp Nomad vulnerable to Allocation of Resources Without Limits or Throttling HashiCorp Nomad and Nomad Enterprise 1.x before 1.0.17, 1.1.x before 1.1.12, and 1.2.x before 1.2.6 is vulnerable to Allocation of Resources Without Limits or Throttling.
ghsaosv
CVE-2020-7218P3HIGH≥ 0, < 0.10.32021-05-18
CVE-2020-7218 [HIGH] CWE-400 Allocation of Resources Without Limits or Throttling in HashiCorp Nomad Allocation of Resources Without Limits or Throttling in HashiCorp Nomad HashiCorp Nomad and Nomad Enterprise before 0.10.3 allow unbounded resource usage. ### Specific Go Packages Affected github.com/hashicorp/nomad/command/agent
ghsaosv