← Back to home
wid-sec-w-2026-1642  ·  Published 2026-05-21  ·  View on BSI CERT-Bund ↗

OpenTofu: Vulnerability allows Manipulation from Dateien

CVSS N/A NONE

Risk Summary

Ein Angreifer kann eine Schwachstelle in OpenTofu ausnutzen, um Dateien zu manipulieren.

Affected Vendors

Open Source

Affected Products (4)

Open Source · OpenTofu <1.11.7
Open Source · OpenTofu 1.11.7
Open Source · OpenTofu <1.10.10
Open Source · OpenTofu 1.10.10

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more