CVE-2024-1329 in Nomadinformação

Sumário

de MITRE • 08/02/2024

HashiCorp Nomad and Nomad Enterprise 1.5.13 up to 1.6.6, and 1.7.3 template renderer is vulnerable to arbitrary file write on the host as the Nomad client user through symlink attacks. Fixed in Nomad 1.7.4, 1.6.7, 1.5.14.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Responsável

HashiCorp Inc.

Reservar

07/02/2024

Divulgação

08/02/2024

Moderação

aceite

Entrada

VDB-253227

CPE

pronto

CWE

CWE-61 (confirmado)

CVSS

7.5 (NVD)

EPSS

0.00334

KEV

não

Atividades

muito baixo

Fontes

MITRE	https://www.cve.org/CVERecord?id=CVE-2024-1329
NVD	https://nvd.nist.gov/vuln/detail/CVE-2024-1329
CVE Details	https://www.cvedetails.com/cve/CVE-2024-1329/

◂ Voltar Visão Geral Próximo ▸

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!