Lucene search
Alpine Linux Development TeamALPINE:CVE-2021-36230HistoryJul 20, 2021 - 9:15 p.m.
CVE-2021-36230
2021-07-2021:15:00
Alpine Linux Development Team
security.alpinelinux.org
25
0.001 Low
EPSS
Percentile
42.8%
HashiCorp Terraform Enterprise releases up to v202106-1 did not properly perform authorization checks on a subset of API requests executed using the run token, allowing privilege escalation to organization owner. Fixed in v202107-1.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Alpine | 3.14-community | noarch | terraform | = 0.14.9-r3 | UNKNOWN |
| Alpine | 3.15-community | noarch | terraform | = 1.0.11-r2 | UNKNOWN |
| Alpine | 3.16-community | noarch | terraform | = 1.2.0-r4 | UNKNOWN |
| Alpine | 3.17-community | noarch | terraform | = 1.3.4-r4 | UNKNOWN |
| Alpine | 3.18-community | noarch | terraform | = 1.4.6-r5 | UNKNOWN |
Related
cvelist
cvelist
CVE-2021-36230
2021-07-20 20:53:26
cbl_mariner
cbl_mariner
CVE-2021-36230 affecting package terraform for versions less than 1.3.2-1
2022-11-03 20:37:49
cve
cve
CVE-2021-36230
2021-07-20 21:15:07
nvd
nvd
CVE-2021-36230
2021-07-20 21:15:07
nessus
nessus
CBL Mariner 2.0 Security Update: terraform (CVE-2021-36230)
2023-03-20 00:00:00
prion
prion
Authorization
2021-07-20 21:15:00