← Back to CVE List

CVE-2022-3866

Published: 2022-11-10T06:15Z
Last Modified: 2024-11-21T07:20Z
Source: MITRE CVE List
License: MITRE-CVE-TOS
HashiCorp Nomad and Nomad Enterprise 1.4.0 up to 1.4.1 workload identity token can list non-sensitive metadata for paths under nomad/ that belong to other jobs in the same namespace. Fixed in 1.4.2. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt