HashiCorp Nomad Incorrect ACL Policy Lookup Vulnerability

A vulnerability exists in HashiCorp Nomad's prefix-based Access Control List (ACL) policy lookup, which can result in incorrect application of rules and unintentional shadowing of policies. This issue affects both Nomad Community Edition and Nomad Enterprise, specifically versions 1.4.0 prior to 1.10.1, with the exception of Nomad Enterprise versions 1.9.9 and 1.8.13. The vulnerability allows an attacker with the appropriate access to create a job with a name that prefixes an existing job, thereby inheriting its ACL policies. This could enable the execution of privileged jobs without the need to configure a new policy.

Impact

Exploitation of this vulnerability could lead to unauthorized privilege escalation by allowing users to execute jobs with elevated rights, bypassing standard ACL policy configurations.

Remediation

Users are advised to upgrade to Nomad Community Edition 1.10.2 or Nomad Enterprise 1.10.2, 1.9.10, or 1.8.14.