CVE-2021-3283

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2021-3283

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2021-3283.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2021-3283

Aliases

Downstream

UBUNTU-CVE-2021-3283

Published

2021-02-01T16:15:13.357Z

Modified

2026-02-11T14:33:03.357472Z

Severity

7.5 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N CVSS Calculator

Summary

[none]

Details

HashiCorp Nomad and Nomad Enterprise up to 0.12.9 exec and java task drivers can access processes associated with other tasks on the same node. Fixed in 0.12.10, and 1.0.3.

References

https://discuss.hashicorp.com/t/hcsec-2021-01-nomad-s-exec-and-java-task-drivers-did-not-isolate-processes/20332

Affected packages

Git / github.com/hashicorp/nomad

Affected ranges

Type: GIT
Repo: https://github.com/hashicorp/nomad
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Fixed

239be4e591feac949408d48fbd8446f9c54d9107

Introduced

a480eed0815c54612856d9115a34bb1d1a773e8c

Fixed

d79b74c937496a7b94146b3615996652c5d27c58

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2021-3283.json"