6 matches found
AZL-9179 CVE-2018-9057 for package terraform is not applicable
This CVE either no longer is or was never applicable...
CBL Mariner 2.0 Security Update: terraform (CVE-2018-9057)
The version of terraform installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2018-9057 advisory. - aws/resourceawsiamuserloginprofile.go in the HashiCorp Terraform Amazon Web Services AWS provider through...
CVE-2018-9057 affecting package terraform for versions less than 1.2.2-2
CVE-2018-9057 affecting package terraform for versions less than 1.2.2-2. An upgraded version of the package is available that resolves this issue...
CVE-2018-9057
aws/resourceawsiamuserloginprofile.go in the HashiCorp Terraform Amazon Web Services AWS provider through v1.12.0 has an inappropriate PRNG algorithm and seeding, which makes it easier for remote attackers to obtain access by leveraging an IAM account that was provisioned with a weak password...
CVE-2018-9057
aws/resourceawsiamuserloginprofile.go in the HashiCorp Terraform Amazon Web Services AWS provider through v1.12.0 has an inappropriate PRNG algorithm and seeding, which makes it easier for remote attackers to obtain access by leveraging an IAM account that was provisioned with a weak password...
CVE-2018-9057
The CVE-2018-9057 entry affects the HashiCorp Terraform AWS provider, specifically aws/resource_aws_iam_user_login_profile.go, through v1.12.0. The underlying issue is an inappropriate PRNG algorithm and seeding, which can let remote attackers gain access by exploiting an IAM account with a weak ...