| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2025-62328 | HCL Nomad server on Domino is affected by a missing default frame-ancestors directive | HCLSoftware | Nomad server on Domino | Low | 3.7 | 2026-03-11 22:04:11 | Deep Dive |
| CVE-2025-4922 | Nomad Vulnerable To Incorrect ACL Policy Lookup Attached To A Job | HashiCorp | Nomad | High | 8.1 | 2025-06-11 13:24:19 | Deep Dive |
| CVE-2025-3744 | Nomad Vulnerable To Violation Of Mandatory Sentinel Policies in Nomad Job Submissions via Policy Override | HashiCorp | Nomad Enterprise | High | 7.6 | 2025-05-13 18:40:08 | Deep Dive |
| CVE-2025-32409 | Ratta SuperNote A6 X2 Nomad 安全漏洞 | Ratta | SuperNote A6 X2 Nomad | High | 8.1 | 2025-04-07 00:00:00 | Deep Dive |
| CVE-2025-1296 | Nomad Exposes Sensitive Workload Identity and Client Secret Token in Audit Logs | HashiCorp | Nomad | Medium | 6.5 | 2025-03-10 18:02:22 | Deep Dive |
| CVE-2025-0937 | Nomad Vulnerable To Event Stream Namespace ACL Policy Bypass Through Wildcard Namespace | HashiCorp | Nomad | High | 7.1 | 2025-02-12 18:59:25 | Deep Dive |
| CVE-2024-12678 | Nomad Allocations Vulnerable To Privilege Escalation Within A Namespace Using Unredacted Workload Identity Tokens | HashiCorp | Nomad | Medium | 6.5 | 2024-12-20 01:49:41 | Deep Dive |
| CVE-2024-30129 | HCL Nomad server on Domino is affected by a host header injection vulnerability | HCL Software | Nomad server on Domino | Medium | 5.3 | 2024-12-06 15:57:42 | Deep Dive |
| CVE-2024-10975 | Nomad Vulnerable To Cross-Namespace Volume Creation Abusing CSI Write Permission | HashiCorp | Nomad | High | 7.7 | 2024-11-07 21:04:44 | Deep Dive |
| CVE-2024-30132 | Missing default HTTP security headers affect HCL Nomad server on Domino | HCL Software | Nomad server on Domino | Low | 3.7 | 2024-10-01 12:10:09 | Deep Dive |
| CVE-2024-23586 | An insufficient session timeout vulnerability affects HCL Nomad server on Domino | HCL Software | Nomad server on Domino | Medium | 5.3 | 2024-09-27 21:20:29 | Deep Dive |
| CVE-2024-30128 | An open proxy vulnerability affects HCL Nomad server on Domino | HCL Software | Nomad server on Domino | High | 8.6 | 2024-09-25 14:42:54 | Deep Dive |
| CVE-2024-7625 | Nomad Vulnerable to Allocation Directory Escape On Non-Existing File Paths Through Archive Unpacking | HashiCorp | Nomad | Medium | 5.8 | 2024-08-14 23:20:18 | Deep Dive |
| CVE-2024-6717 | Nomad Vulnerable to Allocation Directory Path Escape Through Archive Unpacking | HashiCorp | Nomad | High | 7.7 | 2024-07-23 00:16:21 | Deep Dive |
| CVE-2024-30130 | HCL Nomad server on Domino is affected by a use of web browser cache containing sensitive information vulnerability | HCL Software | Nomad server on Domino | Low | 3.7 | 2024-07-19 00:03:13 | Deep Dive |
| CVE-2024-23588 | A denial of service vulnerability affects HCL Nomad server on Domino | HCL Software | Nomad server on Domino | Medium | 5.3 | 2024-07-05 13:08:47 | Deep Dive |
| CVE-2024-1329 | Nomad Vulnerable to Arbitrary Write Through Symlink Attack | HashiCorp | Nomad | High | 7.7 | 2024-02-08 19:20:11 | Deep Dive |
| CVE-2023-23342 | HCL Nomad for web is affected by cryptographic validation of local data access that can be circumvented | HCL Software | HCL Nomad for web | Medium | 6.6 | 2023-08-10 18:46:24 | Deep Dive |
| CVE-2023-3300 | Nomad Search API Leaks Information About CSI Plugins | HashiCorp | Nomad | Medium | 5.3 | 2023-07-19 23:35:26 | Deep Dive |
| CVE-2023-3299 | Nomad Caller ACL Token's Secret ID is Exposed to Sentinel | HashiCorp | Nomad Enterprise | Low | 3.4 | 2023-07-19 23:35:13 | Deep Dive |