Lucene search
Veracode Vulnerability DatabaseVERACODE:34769HistoryMar 21, 2022 - 5:22 p.m.
Insecure Access Control
2022-03-2117:22:19
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
8
hashicorp
access control
vulnerability
authorization
sanitization
arbitrary file read
EPSS
0.002
Percentile
55.5%
HashiCorp has insecure access control. The vulnerability exists due to a lack of sanitization of the authorization allowing an attacker with read-fs and alloc-exec (or job-submit) capabilities to read arbitrary files on the host filesystem as root.
Related
alpinelinux
alpinelinux
CVE-2022-24683
2022-02-17 17:15:09
cve
cve
CVE-2022-24683
2022-02-17 17:15:09
debiancve
debiancve
CVE-2022-24683
2022-02-17 17:15:00
cvelist
cvelist
CVE-2022-24683
2022-02-17 16:36:37
nvd
nvd
CVE-2022-24683
2022-02-17 17:15:09
github
github
Arbitrary file reads in HashiCorp Nomad
2022-02-18 00:00:34
osv
osv
Arbitrary file reads in HashiCorp Nomad
2022-02-18 00:00:34
CVE-2022-24683
2022-02-17 17:15:09
Arbitrary file reads in HashiCorp Nomad in github.com/hashicorp/nomad
2024-08-21 15:11:38
ubuntucve
ubuntucve
CVE-2022-24683
2022-02-17 00:00:00
prion
prion
Design/Logic Flaw
2022-02-17 17:15:00