CVE-2017-7642

Published: 2017-08-02T19:29Z

Last Modified: 2024-11-21T03:32Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

The sudo helper in the HashiCorp Vagrant VMware Fusion plugin (aka vagrant-vmware-fusion) before 4.0.21 allows local users to gain root privileges by leveraging failure to verify the path to the encoded ruby script or scrub the PATH variable. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt