CVE-2023-3300 Nomad Search API Leaks Information About CSI Plugins

2023-07-1923:35:26

CWE-266

HashiCorp

www.cve.org

nomad

api

information leak

csi plugins

http

hashicorp

unauthenticated users

policy

vulnerability

fixed

CVSS3

5.3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

AI Score

5.5

Confidence

High

EPSS

0.001

Percentile

25.3%

JSON

HashiCorp Nomad and Nomad Enterprise 0.11.0 up to 1.5.6 and 1.4.1 HTTP search API can reveal names of available CSI plugins to unauthenticated users or users without the plugin:read policy. Fixed in 1.6.0, 1.5.7, and 1.4.1.

CNA Affected

[
  {
    "defaultStatus": "unaffected",
    "platforms": [
      "64 bit",
      "32 bit",
      "x86",
      "ARM",
      "MacOS",
      "Windows",
      "Linux"
    ],
    "product": "Nomad",
    "repo": "https://github.com/hashicorp/nomad",
    "vendor": "HashiCorp",
    "versions": [
      {
        "lessThanOrEqual": "1.4.1",
        "status": "affected",
        "version": "0.11.0",
        "versionType": "semver"
      },
      {
        "lessThanOrEqual": "1.5.6",
        "status": "affected",
        "version": "0.11.0",
        "versionType": "semver"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "platforms": [
      "64 bit",
      "32 bit",
      "x86",
      "ARM",
      "MacOS",
      "Windows",
      "Linux"
    ],
    "product": "Nomad Enterprise",
    "repo": "https://github.com/hashicorp/nomad",
    "vendor": "HashiCorp",
    "versions": [
      {
        "lessThanOrEqual": "1.4.1",
        "status": "affected",
        "version": "0.11.0",
        "versionType": "semver"
      },
      {
        "lessThanOrEqual": "1.5.6",
        "status": "affected",
        "version": "0.11.0",
        "versionType": "semver"
      }
    ]
  }
]