Package impact

Go / github.com/hashicorp/nomad

critical high medium low unknown

0

KEV Has exploit

CVE	Severity	CVSS	Risk	Published	Description	Impact
CVE-2026-7474	high	8.8	8.8	15d ago	HashiCorp Nomad vulnerable to a path traversal
CVE-2021-37218	high	—	8.0	5y ago	Privilege escalation in Hashicorp Nomad in github.com/hashicorp/nomad
CVE-2026-6959	medium	6.0	6.0	15d ago	HashiCorp Nomad vulnerable to symlink attack
CVE-2021-43415	medium	—	5.5	5y ago	Improper Authentication in HashiCorp Nomad in github.com/hashicorp/nomad
CVE-2025-4922	unknown	—	—	1y ago	Hashicorp Nomad Incorrect Privilege Assignment vulnerability in github.com/hashicorp/nomad
CVE-2025-1296	unknown	—	—	1y ago	Unintentional exposure of the workload identity token and client secret in logs in github.com/hashicorp/nomad
CVE-2024-12678	unknown	—	—	1y ago	Hashicorp Nomad Incorrect Privilege Assignment vulnerability in github.com/hashicorp/nomad
CVE-2024-10975	unknown	—	—	2y ago	Hashicorp Nomad Incorrect Authorization vulnerability in github.com/hashicorp/nomad
CVE-2024-7625	unknown	—	—	2y ago	Nomad Vulnerable to Allocation Directory Escape On Non-Existing File Paths Through Archive Unpacking in github.com/hashicorp/nomad
CVE-2024-6717	unknown	—	—	2y ago	HashiCorp Nomad is vulnerable to path escape through archive unpacking during migration in github.com/hashicorp/nomad
CVE-2024-1329	unknown	—	—	2y ago	Symlink attack in github.com/hashicorp/nomad
CVE-2023-3300	unknown	—	—	3y ago	CSI plugin names disclosure in github.com/hashicorp/nomad
CVE-2023-3299	unknown	—	—	3y ago	API token secret ID leak to Sentinel in github.com/hashicorp/nomad
CVE-2023-3072	unknown	—	—	3y ago	ACL security vulnerability in github.com/hashicorp/nomad
CVE-2023-1296	unknown	—	—	3y ago	Hashicorp Nomad ACLs Cannot Deny Access to Workload’s Own Variables in github.com/hashicorp/nomad
CVE-2023-1782	unknown	—	—	3y ago	HashiCorp Nomad vulnerable to unauthenticated client agent HTTP request privilege escalation in github.com/hashicorp/nomad
CVE-2023-1299	unknown	—	—	3y ago	Nomad Job Submitter Privilege Escalation Using Workload Identity in github.com/hashicorp/nomad
CVE-2023-0821	unknown	—	—	3y ago	Uncontrolled Resource Consumption in Hashicorp Nomad in github.com/hashicorp/nomad
CVE-2022-3866	unknown	—	—	4y ago	HashiCorp Nomad vulnerable to non-sensitive metadata exposure in github.com/hashicorp/nomad
CVE-2022-3867	unknown	—	—	4y ago	HashiCorp Nomad vulnerable to Insufficient Session Expiration in github.com/hashicorp/nomad
CVE-2022-41606	unknown	—	—	4y ago	Nomad Panics On Job Submission With Bad Artifact Stanza Source URL in github.com/hashicorp/nomad
CVE-2022-30324	unknown	—	—	4y ago	Privilege escalation in Hashicorp Nomad in github.com/hashicorp/nomad
CVE-2019-12618	unknown	—	—	4y ago	Hashicorp Nomad Access Control Issues in github.com/hashicorp/nomad
CVE-2022-24685	unknown	—	—	4y ago	HashiCorp Nomad vulnerable to Allocation of Resources Without Limits or Throttling in github.com/hashicorp/nomad
CVE-2022-24683	unknown	—	—	4y ago	Arbitrary file reads in HashiCorp Nomad in github.com/hashicorp/nomad
CVE-2022-24684	unknown	—	—	4y ago	Nomad Spread Job Stanza May Trigger Panic in Servers in github.com/hashicorp/nomad
CVE-2019-14802	unknown	—	—	4y ago	Hashicorp Nomad Information Exposure Through Environmental Variables in github.com/hashicorp/nomad
CVE-2020-28348	unknown	—	—	4y ago	Path Traversal in HashiCorp Nomad in github.com/hashicorp/nomad
CVE-2020-27195	unknown	—	—	4y ago	Use After Free in HashiCorp Nomad in github.com/hashicorp/nomad
CVE-2022-24686	unknown	—	—	4y ago	HashiCorp Nomad Artifact Download Race Condition in github.com/hashicorp/nomad
CVE-2021-3283	unknown	—	—	5y ago	Improper Privilege Management in HashiCorp Nomad in github.com/hashicorp/nomad
CVE-2021-32575	unknown	—	—	5y ago	Improper network isolation in Hashicorp Nomad in github.com/hashicorp/nomad
CVE-2020-7956	unknown	—	—	5y ago	Improper Certificate Validation in HashiCorp Nomad in github.com/hashicorp/nomad
CVE-2020-7218	unknown	—	—	5y ago	Allocation of Resources Without Limits or Throttling in HashiCorp Nomad in github.com/hashicorp/nomad