7 matches found
EUVD-2023-43800
Malicious code in bioql PyPI...
CVE-2023-3114
Terraform Enterprise since v202207-1 did not properly implement authorization rules for agent pools, allowing the workspace to be targeted by unauthorized agents. This authorization flaw could potentially allow a workspace to access resources from a separate, higher-privileged workspace in the sa...
SUSE CVE-2023-3114
Terraform Enterprise since v202207-1 did not properly implement authorization rules for agent pools, allowing the workspace to be targeted by unauthorized agents. This authorization flaw could potentially allow a workspace to access resources from a separate, higher-privileged workspace in the sa...
CVE-2023-3114
Terraform Enterprise since v202207-1 did not properly implement authorization rules for agent pools, allowing the workspace to be targeted by unauthorized agents. This authorization flaw could potentially allow a workspace to access resources from a separate, higher-privileged workspace in the sa...
CVE-2023-3114
Terraform Enterprise before v202306-1 is affected by CVE-2023-3114, due to improper authorization rules for agent pools that could allow a workspace to be targeted by unauthorized agents. This could enable a workspace to access resources from another, higher-privileged workspace within the same o...
PT-2023-23173 · Hashicorp · Terraform Enterprise
Name of the Vulnerable Software and Affected Versions: Terraform Enterprise versions prior to v202306-1 Description: The issue is related to improper implementation of authorization rules for agent pools, allowing workspaces to be targeted by unauthorized agents. This could potentially enable a...
HashiCorp Terraform 安全漏洞
HashiCorp Terraform is an open source tool for provisioning and managing cloud infrastructures from HashiCorp, USA. A security vulnerability exists in Terraform Enterprise prior to version v202207-1 that stems from not properly enforcing authorization rules for agent pools, which could result in ...