← Back to CVE List

CVE-2024-10975

Published: 2024-11-07T21:15Z
Last Modified: 2024-11-08T19:01Z
Source: MITRE CVE List
License: MITRE-CVE-TOS
Nomad Community and Nomad Enterprise ("Nomad") volume specification is vulnerable to arbitrary cross-namespace volume creation through unauthorized Container Storage Interface (CSI) volume writes. This vulnerability, identified as CVE-2024-10975, is fixed in Nomad Community Edition 1.9.2 and Nomad Enterprise 1.9.2, 1.8.7, and 1.7.15. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt