github.com/hashicorp/nomad is vulnerable to denial of service. An unauthenticated remote attacker is able to exhausting all ephemeral ports on agents by establishing connection with the server with incomplete TLS handshakes, which would lead to an application crash when system resources have been exhausted.
CPE | Name | Operator | Version |
---|---|---|---|
github.com/hashicorp/nomad | le | 0.10.2 | |
github.com/hashicorp/nomad | le | 0.10.2 |