HashiCorp Vagrant's Windows installer targeted a custom location with a non-protected path that could be junctioned, introducing potential for unauthorized file system writes. Fixed in Vagrant 2.4.0.
2023-10-27T22:15:09.163
2024-11-21T08:42:35.567
Modified
CVSSv3.1: 3.8 (LOW)