CVE-2024-10975 - Nomad Arbitrary Cross-Namespace Volume Creation

2 weeks ago 11
ARTICLE AD BOX
CVE ID : CVE-2024-10975
Published : Nov. 7, 2024, 9:15 p.m. | 24 minutes ago
Description : Nomad Community and Nomad Enterprise ("Nomad") volume specification is vulnerable to arbitrary cross-namespace volume creation through unauthorized Container Storage Interface (CSI) volume writes. This vulnerability, identified as CVE-2024-10975, is fixed in Nomad Community Edition 1.9.2 and Nomad Enterprise 1.9.2, 1.8.7, and 1.7.15.
Severity: 7.7 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more...
Read Entire Article