PT-2019-12895 · Hashicorp · Hashicorp Nomad

Schmichael

Publicado

2019-08-12

Atualizado

2024-08-20

CVE-2019-12618

CVSS v3.1

Crítica

Vetor

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions HashiCorp Nomad versions 0.9.0 through 0.9.1

Description The issue is related to Incorrect Access Control via the exec driver. This affects the access control mechanism in HashiCorp Nomad, potentially allowing unauthorized access.

Recommendations For HashiCorp Nomad versions 0.9.0 through 0.9.1, consider restricting access to the exec driver until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Improper Privilege Management

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-269

Identificadores relacionados

CVE-2019-12618

GHSA-2W2V-XCR9-MJ4M

GO-2023-1928

Produtos afetados

Hashicorp Nomad

PT-2019-12895 · Hashicorp · Hashicorp Nomad

CVE-2019-12618

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 12