28,676 Entries 2,229 Sources 5 Verticals Last sync 7 minutes Live
Dashboard/ OS & platform/ OpenTofu
OS & platform

OpenTofu

Linux Foundation
Repository
v1.12.1 bewährt latest release
27.05.2026

Upgrade assessment

Unkritisch

Upgrade unkritisch

7 CVE(s) zuletzt (niedrige/mittlere Schwere)

Derived automatically from release, repo and CVE data — no judgment by a language model.

Specsattributes
gh_etagW/"2f6669a4ffa15b8bbe6e221f16f4059016b98f1628bc0ec557de7bf8fdd2e89f"
eol_productopentofu
gh_checked_at2026-06-08T00:45:00.096648+00:00
Timelinealle Einträge
Type Ereignis · Quelle Value · Time
CVE
OS & platform Low

OpenTofu may accidentally expose sensitive variables in module sources and backend configurations when static evaluation is enabled, even though this should be blocked.

Source
Advisory
07.06.2026
CVE
OS & platform Low

OpenTofu, an infrastructure-as-code tool, is vulnerable to denial-of-service attacks during module installation when maliciously crafted TLS certificates or archives from untrusted sources are used, potentially causing high CPU usage or memory consumption.

Source
Advisory
07.06.2026
CVE
OS & platform Medium

OpenTofu incorrectly validates TLS certificates when excluded subdomains and wildcard certificates are combined, allowing attackers with valid but contradictory certificates to potentially establish connections to protected servers.

Source
Advisory
07.06.2026
CVE
OS & platform Low

OpenTofu, an infrastructure-as-code tool, is vulnerable to denial-of-service attacks through maliciously crafted ZIP archives when installing modules or providers, causing high CPU usage.

Source
Advisory
07.06.2026
CVE
OS & platform Low

OpenTofu can be crashed when installing modules from untrusted sources through malicious TLS certificates or tar archives, causing unbounded memory usage or high CPU load.

Source
Advisory
07.06.2026
CVE
OS & platform Medium

OpenTofu follows symbolic links in the .terraform/providers directory during provider installation and can write files to arbitrary directories when an attacker controls the working directory.

Source
Advisory
07.06.2026
CVE
OS & platform Low

OpenTofu can enter an infinite loop when installing modules or providers from malicious servers, causing the installation process to hang and depleting system resources.

Source
Advisory
07.06.2026
REL
OS & platform bewährt

Release 2026-05-27

Source
v1.12.1
27.05.2026
REL
OS & platform bewährt

Release 2026-05-14

Source
v1.11.8
14.05.2026
REL
OS & platform bewährt

Release 2026-05-14

Source
v1.12.0
14.05.2026
REL
OS & platform bewährt

Release 2026-05-11

Source
v1.10.10
11.05.2026
REL
OS & platform bewährt

Release 2026-05-11

Source
v1.11.7
11.05.2026
REL
OS & platform bewährt

Release 2026-04-29

Source
v1.12.0-rc1
29.04.2026
REL
OS & platform bewährt

Release 2026-04-08

Source
v1.11.6
08.04.2026
REL
OS & platform bewährt

Release 2026-04-08

Source
v1.12.0-beta1
08.04.2026
REL
OS & platform bewährt

Release 2026-02-12

Source
v1.10.9
12.02.2026
REL
OS & platform bewährt

Release 2026-02-12

Source
v1.11.5
12.02.2026
REL
OS & platform bewährt

Release 2026-01-21

Source
v1.11.4
21.01.2026
REL
OS & platform bewährt

Release 2026-01-13

Source
v1.11.3
13.01.2026
REL
OS & platform bewährt

Release 2025-12-19

Source
v1.11.2
19.12.2025
REL
OS & platform bewährt

Release 2025-12-10

Source
v1.11.1
10.12.2025
EOL
OS & platform

Current / stable

Source
1.11
09.12.2025
REL
OS & platform bewährt

Release 2025-12-09

Source
v1.11.0
09.12.2025
REL
OS & platform bewährt

Release 2025-12-08

Source
v1.10.8
08.12.2025
REL
OS & platform bewährt

Release 2025-11-25

Source
v1.11.0-rc4
25.11.2025
REL
OS & platform bewährt

Release 2025-11-19

Source
v1.11.0-rc3
19.11.2025
REL
OS & platform bewährt

Release 2025-11-17

Source
v1.11.0-rc2
17.11.2025
REL
OS & platform bewährt

Release 2025-11-06

Source
v1.10.7
06.11.2025
REL
OS & platform bewährt

Release 2025-11-03

Source
v1.11.0-rc1
03.11.2025
REL
OS & platform bewährt

Release 2025-10-23

Source
v1.11.0-beta1
23.10.2025
REL
OS & platform bewährt

Release 2025-09-03

Source
v1.9.4
03.09.2025
REL
OS & platform bewährt

Release 2025-09-03

Source
v1.10.6
03.09.2025
REL
OS & platform bewährt

Release 2025-08-01

Source
v1.10.5
01.08.2025
REL
OS & platform bewährt

Release 2025-07-31

Source
v1.7.10
31.07.2025
REL
OS & platform bewährt

Release 2025-07-31

Source
v1.8.11
31.07.2025
REL
OS & platform bewährt

Release 2025-07-31

Source
v1.9.3
31.07.2025
REL
OS & platform bewährt

Release 2025-07-31

Source
v1.10.4
31.07.2025
REL
OS & platform bewährt

Release 2025-07-15

Source
v1.10.3
15.07.2025
EOL
OS & platform

Current / stable

Source
1.10
24.06.2025
EOL
OS & platform

Current / stable

Source
1.9
09.01.2025
EOL
OS & platform

EOL 2025-12-09

Source
1.8
29.07.2024
EOL
OS & platform

EOL 2025-06-24

Source
1.7
30.04.2024
EOL
OS & platform

EOL 2025-01-09

Source
1.6
09.01.2024