Lucene search
GoogleOSV:GHSA-H3P9-WRGX-82CMHistoryMay 18, 2021 - 6:18 p.m.
Use of a Broken or Risky Cryptographic Algorithm in Terraform
2021-05-1818:18:50
Google
osv.dev
10
When using the Azure backend with a shared access signature (SAS), Terraform versions prior to 0.12.17 may transmit the token and state snapshot using cleartext HTTP.
Specific Go Packages Affected
| CPE | Name | Operator | Version |
|---|---|---|---|
| github.com/hashicorp/terraform | lt | 0.12.17 |
Related
cve
cve
CVE-2019-19316
2019-12-02 21:15:16
osv
osv
CVE-2019-19316
2019-12-02 21:15:16
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2020:0320-1)
2021-06-09 00:00:00
veracode
veracode
Information Disclosure
2019-12-04 02:17:33
github
github
Use of a Broken or Risky Cryptographic Algorithm in Terraform
2021-05-18 18:18:50
prion
prion
Design/Logic Flaw
2019-12-02 21:15:00
cvelist
cvelist
CVE-2019-19316
2019-12-02 20:50:44
nvd
nvd
CVE-2019-19316
2019-12-02 21:15:16
ibm
ibm
Security Bulletin: Multiple Vulnerabilities in CloudPak for Watson AIOps
2023-10-25 20:24:23