CVE-2022-45301 – Insecure permissions in Chocolatey Ruby package v3.1.2.1 and below grants all users in the …

29 November 2022

Vuln ID: CVE-2022-45301

Published: 2022-11-29 02:15:08Z

Description: Insecure permissions in Chocolatey Ruby package v3.1.2.1 and below grants all users in the Authenticated Users group write privileges for the path C:toolsruby31 and all files located in that folder.

Source: NVD.NIST.GOV

Date:

29 November 2022

Categorie(s):

NVD

Tag(s):

NVD

Apple reportedly cuts Vision Pro production due to low demand25 April 2024
Action needed amid escalating ransomware attacks, record-high payments25 April 2024
Ransomware triggers cyberinsurance claims increase25 April 2024
SSH Backdoor from Compromised XZ Utils Library25 April 2024
“Junk gun” ransomware: the cheap new threat to small businesses25 April 2024