CVE-2022-3866: HashiCorp Nomad & Nomad Enterprise Workload Identity Token Vulnerability - Metadata Leaks of Other Jobs in the Same Namespace
CVE-2022-3866 is a vulnerability identified in HashiCorp Nomad and Nomad Enterprise, versions 1.4. up to (but not including) 1.4.2. This vulnerability allows
CVE-2022-36182 - Clickjacking Vulnerability in Hashicorp Boundary v.8.: Exploit Details, Code Snippet, and Original References
The open-source identity-based access management solution, Hashicorp Boundary v.8., has been deemed vulnerable to a clickjacking attack through CVE-2022-36182. In this long read post,