HashiCorp Terraform Enterprise up to v202102-2 failed to enforce an organization-level setting that required users within an organization to have two-factor authentication enabled. Fixed in v202103-1.
References
Configurations
Information
Published : 2021-03-25 20:16
Updated : 2022-07-12 10:42
NVD link : CVE-2021-3153
Mitre link : CVE-2021-3153
JSON object : View
CWE
CWE-287
Improper Authentication
Products Affected
hashicorp
- terraform_enterprise