14 matches found
EUVD-2023-1211
Malicious code in bioql PyPI...
CVE-2023-30618
Kitchen-Terraform provides a set of Test Kitchen plugins which enable the use of Test Kitchen to converge a Terraform configuration and verify the resulting infrastructure systems with InSpec controls. Kitchen-Terraform v7.0.0 introduced a regression which caused all Terraform output values,...
Sensitive Terraform Output Values Printed At Info Logging Level In Kitchen-Terraform
Summary Kitchen-Terraform v7.0.0 introduced a regression which caused all Terraform output values, including sensitive values, to be printed at the info logging level during the kitchen converge action. Prior to v7.0.0, the output values were printed at the debug level to avoid writing sensitive...
GHSA-65G2-X53Q-CMF6 Sensitive Terraform Output Values Printed At Info Logging Level In Kitchen-Terraform
Summary Kitchen-Terraform v7.0.0 introduced a regression which caused all Terraform output values, including sensitive values, to be printed at the info logging level during the kitchen converge action. Prior to v7.0.0, the output values were printed at the debug level to avoid writing sensitive...
Information Disclosure
kitchen-terraform is vulnerable to Information Disclosure. A remote unauthenticated attacker is able to cause regression which caused all output values, including sensitive values, to be printed at the info logging level during the kitchen converge action, resulting in disclosure of sensitive...
Sensitive Terraform Output Values Printed At Info Logging Level In Kitchen-Terraform
Summary Kitchen-Terraform v7.0.0 introduced a regression which caused all Terraform output values, including sensitive values, to be printed at the info logging level during the kitchen converge action. Prior to v7.0.0, the output values were printed at the debug level to avoid writing sensitive...
Information Exposure
Overview kitchen-terraform is a set of Test Kitchen plugins for testing Terraform configuration. Affected versions of this package are vulnerable to Information Exposure due to a regression that caused all Terraform output values, including sensitive values, to be printed at the info logging leve...
CVE-2023-30618
Kitchen-Terraform provides a set of Test Kitchen plugins which enable the use of Test Kitchen to converge a Terraform configuration and verify the resulting infrastructure systems with InSpec controls. Kitchen-Terraform v7.0.0 introduced a regression which caused all Terraform output values,...
CVE-2023-30618
The CVE-2023-30618 issue affects Kitchen-Terraform, where v7.0.0 regressed to print all Terraform output values, including sensitive ones, at the info level during kitchen converge. This is a local-access disclosure risk, since logs on the attacker’s host could contain sensitive data. Affected co...
CVE-2023-30618 Sensitive Terraform Output Values Printed At Info Logging Level In Kitchen-Terraform
Kitchen-Terraform provides a set of Test Kitchen plugins which enable the use of Test Kitchen to converge a Terraform configuration and verify the resulting infrastructure systems with InSpec controls. Kitchen-Terraform v7.0.0 introduced a regression which caused all Terraform output values,...
CVE-2023-30618 Sensitive Terraform Output Values Printed At Info Logging Level In Kitchen-Terraform
Kitchen-Terraform provides a set of Test Kitchen plugins which enable the use of Test Kitchen to converge a Terraform configuration and verify the resulting infrastructure systems with InSpec controls. Kitchen-Terraform v7.0.0 introduced a regression which caused all Terraform output values,...
CVE-2023-30618 Sensitive Terraform Output Values Printed At Info Logging Level In Kitchen-Terraform
Kitchen-Terraform provides a set of Test Kitchen plugins which enable the use of Test Kitchen to converge a Terraform configuration and verify the resulting infrastructure systems with InSpec controls. Kitchen-Terraform v7.0.0 introduced a regression which caused all Terraform output values,...
Kitchen-Terraform 日志信息泄露漏洞
Kitchen-Terraform is a Test Kitchen plugin for testing Terraform configurations. A log information disclosure vulnerability exists in Kitchen-Terraform versions prior to v7.0.0. An attacker can exploit this vulnerability to gain access to log content...
PT-2023-22814 · Unknown · Kitchen-Terraform
Name of the Vulnerable Software and Affected Versions: Kitchen-Terraform version 7.0.0 Description: Kitchen-Terraform provides a set of Test Kitchen plugins which enable the use of Test Kitchen to converge a Terraform configuration and verify the resulting infrastructure systems with InSpec...