PT-2024-16127 · Vagrant · Vagrant Vmware Utility
Farid Zerrouk
+1
·
Published
2024-10-29
·
Updated
2024-11-07
·
CVE-2024-10228
CVSS v3.1
3.8
Low
| Vector | AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:L/A:N |
Name of the Vulnerable Software and Affected Versions
Vagrant VMWare Utility version 1.0.23 and earlier
Description
The Vagrant VMWare Utility Windows installer has a non-protected path that could be modified by an unprivileged user, introducing potential for unauthorized file system writes.
Recommendations
For versions prior to 1.0.23, update to Vagrant VMWare Utility version 1.0.23 to resolve the issue.
Fix
Incorrect Permission
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Vagrant Vmware Utility