CVE-2023-4782

Terraform version 1.0.8 through 1.5.6 allows arbitrary file write during the `init` operation if run on maliciously crafted Terraform configuration. This vulnerability is fixed in Terraform 1.5.7. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt