Unrated severityNVD Advisory· Published Feb 25, 2022· Updated Aug 3, 2024
CVE-2022-25374
CVE-2022-25374
Description
HashiCorp Terraform Enterprise v202112-1, v202112-2, v202201-1, and v202201-2 were configured to log inbound HTTP requests in a manner that may capture sensitive data. Fixed in v202202-1.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2(expand)+ 1 more
- (no CPE)
- (no CPE)range: <=v202201-2
Patches
Vulnerability mechanics
References
2- discuss.hashicorp.commitrex_refsource_MISC
- discuss.hashicorp.com/t/hcsec-2022-06-terraform-enterprise-may-capture-sensitive-data-in-logs/mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.