CVE-2025-2180
NONE—CVSS v3
—CVSS v2
0.37%
EPSS (exploit probability)
CWE-502CWE
Description
An unsafe deserialization vulnerability in Palo Alto Networks Checkov by Prisma® Cloud allows an authenticated user to execute arbitrary code as a non administrative user by scanning a malicious terraform file when using Checkov in Prisma® Cloud.
This issue impacts Checkov 3.0 versions earlier than Checkov 3.2.415.
Affected routers (0)
No routers currently mapped to this CVE in our database.