Security Advisory

CVE-2023-4782

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-09-08 17:04:33

Last updated 2024-09-26 14:05:36

Assigner HashiCorp

State PUBLISHED

Description

Terraform version 1.0.8 through 1.5.6 allows arbitrary file write during the `init` operation if run on maliciously crafted Terraform configuration. This vulnerability is fixed in Terraform 1.5.7.

← Browse all CVEs View on cve.org ↗