Unrated severityNVD Advisory· Published Sep 15, 2021· Updated Aug 4, 2024
CVE-2021-40862
CVE-2021-40862
Description
HashiCorp Terraform Enterprise up to v202108-1 contained an API endpoint that erroneously disclosed a sensitive URL to authenticated parties, which could be used for privilege escalation or unauthorized modification of a Terraform configuration. Fixed in v202109-1.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- HashiCorp/Terraform Enterprisedescription
- Range: <=v202108-1
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.