HashiCorp Nomad

by HashiCorpv2.0.3

Last updated Jun 9, 2026

An easy-to-use, flexible, and performant workload orchestrator that can deploy a mix of microservice, batch, containerized, and non-containerized applications.

Visit homepage

Install with winget

$ winget install --id Hashicorp.Nomad --exact --version 2.0.3

Run in Command Prompt, PowerShell, or Windows Terminal. Prompts for any agreements.

Built by Pckgr

For Intune admins

Stop chasing app updates. Pckgr patches them for you.

Automated application patching for Microsoft Intune. Pckgr keeps a curated library of 1,000+ apps continuously up-to-date in your tenant via Microsoft Graph - no manual repackaging, no chasing vendor sites.

Start free 30-day trial

No credit card required.

About

Nomad is a simple and flexible workload orchestrator to deploy and manage containers (docker, podman), non-containerized applications (executable, Java), and virtual machines (qemu) across on-prem and clouds at scale.

Nomad provides several key features:

- Deploy Containers and Legacy Applications: Nomad’s flexibility as an orchestrator enables an organization to run containers, legacy, and batch applications together on the same infrastructure. Nomad brings core orchestration benefits to legacy applications without needing to containerize via pluggable task drivers.

- Simple & Reliable: Nomad runs as a single binary and is entirely self contained - combining resource management and scheduling into a single system. Nomad does not require any external services for storage or coordination. Nomad automatically handles application, node, and driver failures. Nomad is distributed and resilient, using leader election and state replication to provide high availability in the event of failures.

- Device Plugins & GPU Support: Nomad offers built-in support for GPU workloads such as machine learning (ML) and artificial intelligence (AI). Nomad uses device plugins to automatically detect and utilize resources from hardware devices such as GPU, FPGAs, and TPUs.

- Federation for Multi-Region, Multi-Cloud: Nomad was designed to support infrastructure at a global scale. Nomad supports federation out-of-the-box and can deploy applications across multiple regions and clouds.

- Proven Scalability: Nomad is optimistically concurrent, which increases throughput and reduces latency for workloads. Nomad has been proven to scale to clusters of 10K+ nodes in real-world production environments.

- HashiCorp Ecosystem: Nomad integrates seamlessly with Terraform, Consul, Vault for provisioning, service discovery, and secrets management.

Installers · v2.0.3

Architecture	Type	Scope	Install	Download
x64	ZIP archive	-		Direct

Copy a command tailored to that specific architecture, type, and scope - useful when winget would otherwise pick a different default.

Security

25 known CVEs via NVD

high8.1Patched in wingetCVE-2025-4922affects before 1.8.14, 1.9.10, 1.10.2Jun 11, 2025
Nomad Community and Nomad Enterprise (“Nomad”) prefix-based ACL policy lookup can lead to incorrect rule application and shadowing. This vulnerability, identified as CVE-2025-4922, is fixed in Nomad Community Edition 1.10.2 and Nomad Enterprise 1.10.2, 1.9.10, and 1.8.14.
Vendor advisory
high7.6Patched in wingetCVE-2025-3744affects before 1.8.13, 1.9.9May 13, 2025
Nomad Enterprise (“Nomad”) jobs using the policy override option are bypassing the mandatory sentinel policies. This vulnerability, identified as CVE-2025-3744, is fixed in Nomad Enterprise 1.10.1, 1.9.9, and 1.8.13.
Vendor advisory
medium6.5Patched in wingetCVE-2025-1296affects before 1.7.19, 1.8.11, 1.9.7Mar 10, 2025
Nomad Community and Nomad Enterprise (“Nomad”) are vulnerable to unintentional exposure of the workload identity token and client secret token in audit logs. This vulnerability, identified as CVE-2025-1296, is fixed in Nomad Community Edition 1.9.7 and Nomad Enterprise 1.9.7, 1....
Vendor advisory
high7.1Patched in wingetCVE-2025-0937affects before 1.7.18, 1.8.10, 1.9.6Feb 12, 2025
Nomad Community and Nomad Enterprise ("Nomad") event stream configured with a wildcard namespace can bypass the ACL Policy allowing reads on other namespaces.
Vendor advisory
medium6.5Patched in wingetCVE-2024-12678affects before 1.7.16, 1.8.8, 1.9.4Dec 19, 2024
Nomad Community and Nomad Enterprise ("Nomad") allocations are vulnerable to privilege escalation within a namespace through unredacted workload identity tokens. This vulnerability, identified as CVE-2024-12678, is fixed in Nomad Community Edition 1.9.4 and Nomad Enterprise 1.9....
Vendor advisory
high7.7Patched in wingetCVE-2024-10975affects before 1.7.15, 1.8.7, 1.9.2Nov 7, 2024
Nomad Community and Nomad Enterprise ("Nomad") volume specification is vulnerable to arbitrary cross-namespace volume creation through unauthorized Container Storage Interface (CSI) volume writes. This vulnerability, identified as CVE-2024-10975, is fixed in Nomad Community Edit...
Vendor advisory
medium5.8Patched in wingetCVE-2024-7625affects before 1.6.14, 1.7.11, 1.8.3Aug 14, 2024
In HashiCorp Nomad and Nomad Enterprise from 0.6.1 up to 1.6.13, 1.7.10, and 1.8.2, the archive unpacking process is vulnerable to writes outside the allocation directory during migration of allocation directories when multiple archive headers target the same file. This vulnerab...
Vendor advisory
high7.7Patched in wingetCVE-2024-6717affects before 1.7.10Jul 22, 2024
HashiCorp Nomad and Nomad Enterprise 1.6.12 up to 1.7.9, and 1.8.1 archive unpacking during migration is vulnerable to path escaping of the allocation directory. This vulnerability, CVE-2024-6717, is fixed in Nomad 1.6.13, 1.7.10, and 1.8.2.
Vendor advisory

Showing 8 of 25. Source: NVD, updated 6h ago. Patch status is best-effort: NVD's fix version is compared against the latest version in winget, but the two version formats don't always align. Confirm with the vendor advisory before treating any specific build as safe.

See a CVE that affects your fleet? Push the patched version to Intune in one click with Pckgr - automated patching is the only way to keep up.

Related apps

VagrantHashiCorp
Hashicorp.Vagrantv2.4.9
Build and manage virtual machine environments in a single workflow
H
HashiCorp TerraformHashiCorp
Hashicorp.Terraformv1.15.6
A tool for building, changing, and versioning infrastructure safely and efficiently.
H
HashiCorp Terraform Language ServerHashiCorp
Hashicorp.TerraformLanguageServerv0.38.7
Optional component for Terraform implementing the Language Server Protocol.
H
HashiCorp ConsulHashiCorp
Hashicorp.Consulv2.0.0
A distributed, highly available, and data center aware solution to connect and configure applications across dynamic, distributed infrastructure.
HashiCorp WaypointHashiCorp
Hashicorp.Waypointv0.11.4
A tool to build, deploy, and release any application on any platform.
Hashicorp Terraform BetaHashiCorp
Hashicorp.Terraform.Betav1.7.0-beta2
Terraform enables you to safely and predictably create, change, and improve infrastructure.

Frequently asked questions

How do I install HashiCorp Nomad on Windows?

Open Windows Terminal, PowerShell, or Command Prompt and run: winget install --id Hashicorp.Nomad --exact --version 2.0.3. winget downloads the installer from HashiCorp and runs it. Requires Windows 10 (1809+) or Windows 11.

How do I install HashiCorp Nomad silently for unattended deployment?

Add --silent and accept the agreements upfront: winget install --id Hashicorp.Nomad --exact 2.0.3 --silent --accept-package-agreements --accept-source-agreements. This is the variant Intune, Configuration Manager, and other deployment tools should use.

How do I uninstall HashiCorp Nomad via winget?

Run: winget uninstall --id Hashicorp.Nomad --exact. Add --silent for unattended uninstalls. winget will use the registered uninstaller from HashiCorp Nomad's Apps & Features entry.

Is HashiCorp Nomad free?

HashiCorp Nomad is distributed under BUSL-1.1. Refer to the publisher (https://github.com/hashicorp/nomad) for the full license terms - Wingetly itself does not charge for installation.

Does HashiCorp Nomad work on Windows 10?

Yes, as long as your Windows 10 build supports winget (1809 or newer). winget ships with App Installer on Windows 10/11 and pulls HashiCorp Nomad directly from the publisher.

How do I keep HashiCorp Nomad up to date?

Run winget upgrade --id Hashicorp.Nomad --exact, or winget upgrade --all to update everything winget tracks. We index 10 versions of HashiCorp Nomad from microsoft/winget-pkgs.

Recent versions

2.0.3latest
2.0.2
2.0.1
2.0.0
1.11.3
1.11.2
1.11.1
1.11.0
1.10.5
1.10.4