RSS   Podatności dla 'Vagrant'   RSS

2017-11-16
 
CVE-2017-16777

CWE-427
 
 
If HashiCorp Vagrant VMware Fusion plugin (aka vagrant-vmware-fusion) 5.0.3 is installed but VMware Fusion is not, a local attacker can create a fake application directory and exploit the suid sudo helper in order to escalate to root.

 
2017-11-06
 
CVE-2017-16001

CWE-362
 
 
In HashiCorp Vagrant VMware Fusion plugin (aka vagrant-vmware-fusion) 5.0.1, a local attacker or malware can silently subvert the plugin update process in order to escalate to root privileges.

 

 >>> Vendor: Hashicorp 15 Produkty
Sentinel
Vault
Vagrant vmware fusion
Vagrant
Terraform
Consul
Nomad
Packer
Terraform enterprise
Vault-ssh-helper
Go-slug
Vault provider for secrets store csi driver
Terraform provider
Vault-action
Go-getter

Copyright 2024, cxsecurity.com

 

Back to Top