Process Isolation Vulnerability in HashiCorp Nomad and Nomad Enterprise

Process Isolation Vulnerability in HashiCorp Nomad and Nomad Enterprise

CVE-2021-3283 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

HashiCorp Nomad and Nomad Enterprise up to 0.12.9 exec and java task drivers can access processes associated with other tasks on the same node. Fixed in 0.12.10, and 1.0.3.

Learn more about our Web Application Penetration Testing UK.