CVE-2025-34075

Name of the Vulnerable Software and Affected Versions: HashiCorp Vagrant (affected versions not specified)

Description: An authenticated virtual machine escape issue exists in HashiCorp Vagrant when using the default synced folder configuration. This configuration automatically mounts the host system's project directory into the guest VM, including the Vagrantfile configuration file, which is a Ruby script evaluated by the host. A low-privileged attacker with shell access to the guest VM can append arbitrary Ruby code to the mounted Vagrantfile. When a user on the host runs a vagrant command, the injected code is executed on the host with that user's privileges. This enables guest-to-host code execution in multi-tenant or adversarial VM scenarios.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.