HashiCorp Nomad and Nomad Enterprise 1.4.0 up to 1.4.1 event stream subscribers using a token with TTL receive updates until token garbage is collected. Fixed in 1.4.2.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: HashiCorp

Published: 2022-11-10T05:45:53.550Z

Updated: 2024-08-03T01:20:58.806Z

Reserved: 2022-11-04T22:54:20.822Z

Link: CVE-2022-3867

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2022-11-10T06:15:11.597

Modified: 2024-11-21T07:20:23.970

Link: CVE-2022-3867

cve-icon Redhat

No data.