CVE-2024-7625

Name of the Vulnerable Software and Affected Versions HashiCorp Nomad versions 0.6.1 through 1.6.13 HashiCorp Nomad versions 1.7.0 through 1.7.10 HashiCorp Nomad versions 1.8.0 through 1.8.2

Description The archive unpacking process in HashiCorp Nomad is vulnerable to writes outside the allocation directory during migration of allocation directories when multiple archive headers target the same file. This issue can be exploited by an attacker who has access or compromise of the Nomad client agent at the source allocation first. The root cause of this behavior is that symlinks are traversed during extraction.

Recommendations For HashiCorp Nomad versions 0.6.1 through 1.6.13, update to version 1.6.14 or later. For HashiCorp Nomad versions 1.7.0 through 1.7.10, update to version 1.7.11 or later. For HashiCorp Nomad versions 1.8.0 through 1.8.2, update to version 1.8.3 or later. As a temporary workaround, consider restricting access to the archive unpacking process to minimize the risk of exploitation.