Bridgecrew · Checkov · CVE-2021-3040
**Name of the Vulnerable Software and Affected Versions**
Checkov versions 2.0.0 through 2.0.138
**Description**
An unsafe deserialization vulnerability in Bridgecrew Checkov by Prisma Cloud allows arbitrary code execution when processing a malicious terraform file.
**Recommendations**
For Checkov versions 2.0.0 through 2.0.138, update to version 2.0.139 or later to resolve the issue.
As a temporary workaround, consider restricting the processing of terraform files from untrusted sources until a patch is available.