Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Nomad Vulnerable To Violation Of Mandatory Sentinel Policies in Nomad Job Submissions via Policy Override
Vulnerability Description
Nomad Enterprise (“Nomad”) jobs using the policy override option are bypassing the mandatory sentinel policies. This vulnerability, identified as CVE-2025-3744, is fixed in Nomad Enterprise 1.10.1, 1.9.9, and 1.8.13.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:L
Vulnerability Type
特权授予不正确
Vulnerability Title
HashiCorp Nomad Enterprise 安全漏洞
Vulnerability Description
HashiCorp Nomad Enterprise是美国HashiCorp公司的一个 Nomad 软件的专业版。 HashiCorp Nomad Enterprise存在安全漏洞,该漏洞源于策略覆盖选项绕过强制sentinel策略。
CVSS Information
N/A
Vulnerability Type
N/A