CVE-2021-43415 is a vulnerability in HashiCorp Nomad
Published on December 3, 2021
HashiCorp Nomad and Nomad Enterprise up to 1.0.13, 1.1.7, and 1.2.0, with the QEMU task driver enabled, allowed authenticated users with job submission capabilities to bypass the configured allowed image paths. Fixed in 1.0.14, 1.1.8, and 1.2.1.
Products Associated with CVE-2021-43415
Want to know whenever a new CVE is published for HashiCorp Nomad? stack.watch will email you.
Exploit Probability
EPSS
0.31%
Percentile
53.37%
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.