Variable Denial of Service Vulnerability in HashiCorp Nomad and Nomad Enterprise 1.4.0 up to 1.5.0

Variable Denial of Service Vulnerability in HashiCorp Nomad and Nomad Enterprise 1.4.0 up to 1.5.0

CVE-2023-1296 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

HashiCorp Nomad and Nomad Enterprise 1.4.0 up to 1.5.0 did not correctly enforce deny policies applied to a workload’s variables. Fixed in 1.4.6 and 1.5.1.

Learn more about our Web Application Penetration Testing UK.