{"id":"CVE-2024-1329","details":"HashiCorp Nomad and Nomad Enterprise 1.5.13 up to 1.6.6, and 1.7.3 template renderer is vulnerable to arbitrary file write on the host as the Nomad client user through symlink attacks. This vulnerability, CVE-2024-1329, is fixed in Nomad 1.7.4, 1.6.7, and 1.5.14.","aliases":["GHSA-c866-8gpw-p3mv","GO-2024-2538"],"modified":"2026-03-14T12:30:56.449602Z","published":"2024-02-08T20:15:52.643Z","references":[{"type":"ADVISORY","url":"https://discuss.hashicorp.com/t/hcsec-2024-03-nomad-vulnerable-to-arbitrary-write-through-symlink-attack"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/hashicorp/nomad","events":[{"introduced":"e52baa0dc58d531489e56b076eecf1f3ba919685"},{"fixed":"bc5cb8a94a43828cda4a54369c5218e788645b2a"},{"introduced":"cfd44e0fff408bedd3e33badfa893a60eccf1bbb"},{"fixed":"84bcb732fd259cad1392113a9b9b4eb5bc88d7ab"},{"introduced":"60ee328f97d19d2d2d9761251b895b06d82eb1a1"},{"fixed":"29019121564e2ef7f5e2a227af6b959510bcc142"},{"introduced":"e52baa0dc58d531489e56b076eecf1f3ba919685"},{"fixed":"bc5cb8a94a43828cda4a54369c5218e788645b2a"},{"introduced":"cfd44e0fff408bedd3e33badfa893a60eccf1bbb"},{"fixed":"84bcb732fd259cad1392113a9b9b4eb5bc88d7ab"},{"introduced":"60ee328f97d19d2d2d9761251b895b06d82eb1a1"},{"fixed":"29019121564e2ef7f5e2a227af6b959510bcc142"}],"database_specific":{"versions":[{"introduced":"1.5.13"},{"fixed":"1.5.14"},{"introduced":"1.6.6"},{"fixed":"1.6.7"},{"introduced":"1.7.3."},{"fixed":"1.7.4"},{"introduced":"1.5.13"},{"fixed":"1.5.14"},{"introduced":"1.6.6"},{"fixed":"1.6.7"},{"introduced":"1.7.3."},{"fixed":"1.7.4"}]}}],"versions":["v1.5.13","v1.6.6","v1.7.3"],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-1329.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"}]}