Back to search
CVE-2024-56802
Published: Dec 31, 2024
Modified: Dec 31, 2024
PUBLISHED
Description
Tapir is a private Terraform registry. Tapir versions 0.9.0 and 0.9.1 are facing a critical issue with scope-able Deploykeys where attackers can guess the key to get write access to the registry. User must upgrade to 0.9.2.
| Vendor | Product | Versions |
|---|---|---|
PacoVK | tapir | affected >= 0.9.0, < 0.9.2 |
Weaknesses (CWE)
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now