2 matches found
CVE-2021-3035
Bridgecrew Checkov (CVE-2021-3035) is affected by an unsafe deserialization vulnerability that enables arbitrary code execution when processing a malicious Terraform file. The issue impacts Checkov 2.0 releases earlier than 2.0.26; Checkov 1.0 is not affected. Root cause is unsafe/deserialization...
CVE-2021-3035 Bridgecrew Checkov: Unsafe deserialization of Terraform files allows code execution
An unsafe deserialization vulnerability in Bridgecrew Checkov by Prisma Cloud allows arbitrary code execution when processing a malicious terraform file. This issue impacts Checkov 2.0 versions earlier than Checkov 2.0.26. Checkov 1.0 versions are not impacted...