Vulnerability Details CVE-2021-3035
An unsafe deserialization vulnerability in Bridgecrew Checkov by Prisma Cloud allows arbitrary code execution when processing a malicious terraform file. This issue impacts Checkov 2.0 versions earlier than Checkov 2.0.26. Checkov 1.0 versions are not impacted.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.034
EPSS Ranking 86.7%
CVSS Severity
CVSS v3 Score 6.7
CVSS v2 Score 6.5
References
Products affected by CVE-2021-3035
-
cpe:2.3:a:paloaltonetworks:bridgecrew_checkov:2.0.0
-
cpe:2.3:a:paloaltonetworks:bridgecrew_checkov:2.0.1
-
cpe:2.3:a:paloaltonetworks:bridgecrew_checkov:2.0.10
-
cpe:2.3:a:paloaltonetworks:bridgecrew_checkov:2.0.11
-
cpe:2.3:a:paloaltonetworks:bridgecrew_checkov:2.0.12
-
cpe:2.3:a:paloaltonetworks:bridgecrew_checkov:2.0.13
-
cpe:2.3:a:paloaltonetworks:bridgecrew_checkov:2.0.14
-
cpe:2.3:a:paloaltonetworks:bridgecrew_checkov:2.0.15
-
cpe:2.3:a:paloaltonetworks:bridgecrew_checkov:2.0.16
-
cpe:2.3:a:paloaltonetworks:bridgecrew_checkov:2.0.17
-
cpe:2.3:a:paloaltonetworks:bridgecrew_checkov:2.0.18
-
cpe:2.3:a:paloaltonetworks:bridgecrew_checkov:2.0.19
-
cpe:2.3:a:paloaltonetworks:bridgecrew_checkov:2.0.2
-
cpe:2.3:a:paloaltonetworks:bridgecrew_checkov:2.0.20
-
cpe:2.3:a:paloaltonetworks:bridgecrew_checkov:2.0.21
-
cpe:2.3:a:paloaltonetworks:bridgecrew_checkov:2.0.22
-
cpe:2.3:a:paloaltonetworks:bridgecrew_checkov:2.0.23
-
cpe:2.3:a:paloaltonetworks:bridgecrew_checkov:2.0.24
-
cpe:2.3:a:paloaltonetworks:bridgecrew_checkov:2.0.25
-
cpe:2.3:a:paloaltonetworks:bridgecrew_checkov:2.0.3
-
cpe:2.3:a:paloaltonetworks:bridgecrew_checkov:2.0.4
-
cpe:2.3:a:paloaltonetworks:bridgecrew_checkov:2.0.5
-
cpe:2.3:a:paloaltonetworks:bridgecrew_checkov:2.0.6
-
cpe:2.3:a:paloaltonetworks:bridgecrew_checkov:2.0.7
-
cpe:2.3:a:paloaltonetworks:bridgecrew_checkov:2.0.8
-
cpe:2.3:a:paloaltonetworks:bridgecrew_checkov:2.0.9