Nomad <2.0.1: Arbitrary File Read/Write via Symlink Attack
CVE-2026-6959 Published on May 12, 2026
Nomad vulnerable to arbitrary file read/write on client host through symlink attack
HashiCorp Nomad and Nomad Enterprise prior to 2.0.1 are vulnerable to arbitrary file read and write on the client host as the Nomad process user through a symlink attack. This vulnerability (CVE-2026-6959) is fixed in Nomad 2.0.1, 1.11.5 and 1.10.11.
Weakness Type
What is an insecure temporary file Vulnerability?
The software attempts to access a file based on the filename, but it does not properly prevent that filename from identifying a link or shortcut that resolves to an unintended resource.
CVE-2026-6959 has been classified to as an insecure temporary file vulnerability or weakness.
Products Associated with CVE-2026-6959
Want to know whenever a new CVE is published for HashiCorp Nomad? stack.watch will email you.
Affected Versions
HashiCorp Nomad:- Version 0.9.0 and below 2.0.1 is affected.
- Version 0.9.0 and below 2.0.1 is affected.