Schmichael

**Name of the Vulnerable Software and Affected Versions** HashiCorp Nomad and Nomad Enterprise versions up to 0.10.2 **Description** The issue concerns improper validation of role/region associated with TLS certificates used for mTLS RPC, making the system susceptible to privilege escalation. **Recommendations** For HashiCorp Nomad and Nomad Enterprise versions up to 0.10.2, update to version 0.10.3 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** HashiCorp Nomad versions 0.9.0 through 0.9.1 **Description** The issue is related to Incorrect Access Control via the exec driver. This affects the access control mechanism in HashiCorp Nomad, potentially allowing unauthorized access. **Recommendations** For HashiCorp Nomad versions 0.9.0 through 0.9.1, consider restricting access to the exec driver until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.