Tgross

**Name of the Vulnerable Software and Affected Versions** HashiCorp Nomad and Nomad Enterprise versions 0.9.0 through 0.12.7 **Description** The client Docker file sandbox feature in HashiCorp Nomad and Nomad Enterprise may be subverted when not explicitly disabled or when using a volume mount type. This issue is related to the `github.com/hashicorp/nomad/drivers/docker` component. **Recommendations** For versions 0.9.0 through 0.12.7, update to version 0.12.8, 0.11.7, or 0.10.8 to resolve the issue. As a temporary workaround, consider disabling the client Docker file sandbox feature until a patch is available. Restrict access to the `github.com/hashicorp/nomad/drivers/docker` component to minimize the risk of exploitation.