CVE-2025-3744

Nomad Enterprise (“Nomad”) jobs using the policy override option are bypassing the mandatory sentinel policies. This vulnerability, identified as CVE-2025-3744, is fixed in Nomad Enterprise 1.10.1, 1.9.9, and 1.8.13.

CVSS v3 7.6 HIGH

7.6^/10

CVSS v3 : HIGH

V3 Legend

Vector :

Exploitability : 2.8 / Impact : 4.7

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact LOW

Integrity Impact HIGH

Availability Impact LOW

Scope UNCHANGED

References

Link	Resource
https://discuss.hashicorp.com/t/hcsec-2025-08-nomad-enterprise-vulnerable-to-violation-of-mandatory-sentinel-policies-in-job-submissions-via-policy-override/74935	Vendor Advisory

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:hashicorp:nomad:::::enterprise:::*
	cpe:2.3:a:hashicorp:nomad:::::enterprise:::*
	cpe:2.3:a:hashicorp:nomad:1.10.0:-:::enterprise:::*
	cpe:2.3:a:hashicorp:nomad:1.10.0:beta1:::enterprise:::*
	cpe:2.3:a:hashicorp:nomad:1.10.0:rc1:::enterprise:::*

History

15 May 2025, 16:45

Type	Values Removed	Values Added
Summary		(es) Los trabajos de Nomad Enterprise ("Nomad") que usan la opción de anulación de políticas están omitiendo las políticas centinela obligatorias. Esta vulnerabilidad, identificada como CVE-2025-3744, está corregida en Nomad Enterprise 1.10.1, 1.9.9 y 1.8.13.
CPE		cpe:2.3:a:hashicorp:nomad:1.10.0:beta1:::enterprise:::* cpe:2.3:a:hashicorp:nomad:::::enterprise:::* cpe:2.3:a:hashicorp:nomad:1.10.0:-:::enterprise:::* cpe:2.3:a:hashicorp:nomad:1.10.0:rc1:::enterprise:::*
CWE		NVD-CWE-noinfo
First Time		Hashicorp nomad Hashicorp
References	~~() https://discuss.hashicorp.com/t/hcsec-2025-08-nomad-enterprise-vulnerable-to-violation-of-mandatory-sentinel-policies-in-job-submissions-via-policy-override/74935 -~~	() https://discuss.hashicorp.com/t/hcsec-2025-08-nomad-enterprise-vulnerable-to-violation-of-mandatory-sentinel-policies-in-job-submissions-via-policy-override/74935 - Vendor Advisory

13 May 2025, 19:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2025-05-13 19:15

Updated : 2025-05-15 16:45

NVD link : CVE-2025-3744

Mitre link : CVE-2025-3744

CVE.ORG link : CVE-2025-3744

JSON object : View

Products Affected

hashicorp

nomad

CWE

CWE-266

Incorrect Privilege Assignment

NVD-CWE-noinfo

{"id": "CVE-2025-3744", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Secondary", "source": "security@hashicorp.com", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.6, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:L", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "LOW", "privilegesRequired": "LOW", "confidentialityImpact": "LOW"}, "impactScore": 4.7, "exploitabilityScore": 2.8}, {"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.6, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:L", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "LOW", "privilegesRequired": "LOW", "confidentialityImpact": "LOW"}, "impactScore": 4.7, "exploitabilityScore": 2.8}]}, "published": "2025-05-13T19:15:50.820", "references": [{"url": "https://discuss.hashicorp.com/t/hcsec-2025-08-nomad-enterprise-vulnerable-to-violation-of-mandatory-sentinel-policies-in-job-submissions-via-policy-override/74935", "tags": ["Vendor Advisory"], "source": "security@hashicorp.com"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Secondary", "source": "security@hashicorp.com", "description": [{"lang": "en", "value": "CWE-266"}]}, {"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-noinfo"}]}], "descriptions": [{"lang": "en", "value": "Nomad Enterprise (\u201cNomad\u201d) jobs using the policy override option are bypassing the mandatory sentinel policies. This vulnerability, identified as CVE-2025-3744, is fixed in Nomad Enterprise 1.10.1, 1.9.9, and 1.8.13."}, {"lang": "es", "value": "Los trabajos de Nomad Enterprise (\"Nomad\") que usan la opci\u00f3n de anulaci\u00f3n de pol\u00edticas est\u00e1n omitiendo las pol\u00edticas centinela obligatorias. Esta vulnerabilidad, identificada como CVE-2025-3744, est\u00e1 corregida en Nomad Enterprise 1.10.1, 1.9.9 y 1.8.13."}], "lastModified": "2025-05-15T16:45:32.517", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:hashicorp:nomad:*:*:*:*:enterprise:*:*:*", "vulnerable": true, "matchCriteriaId": "85007077-1AFD-4B50-8F83-767D69AA5150", "versionEndExcluding": "1.8.13"}, {"criteria": "cpe:2.3:a:hashicorp:nomad:*:*:*:*:enterprise:*:*:*", "vulnerable": true, "matchCriteriaId": "8D62688F-1A0B-41AB-93FD-6A4433147F83", "versionEndExcluding": "1.9.9", "versionStartIncluding": "1.9.0"}, {"criteria": "cpe:2.3:a:hashicorp:nomad:1.10.0:-:*:*:enterprise:*:*:*", "vulnerable": true, "matchCriteriaId": "3523353D-E99A-4C75-B227-CEF80EE10E7C"}, {"criteria": "cpe:2.3:a:hashicorp:nomad:1.10.0:beta1:*:*:enterprise:*:*:*", "vulnerable": true, "matchCriteriaId": "33728AF4-2870-466E-89DB-3188A3EB1597"}, {"criteria": "cpe:2.3:a:hashicorp:nomad:1.10.0:rc1:*:*:enterprise:*:*:*", "vulnerable": true, "matchCriteriaId": "3E1B41D7-6487-48BD-A8C0-E6916CF8713D"}], "operator": "OR"}]}], "sourceIdentifier": "security@hashicorp.com"}

7.6 /10