Unrated severityNVD Advisory· Published Nov 29, 2022· Updated Apr 25, 2025
CVE-2022-45301
CVE-2022-45301
Description
Insecure permissions in Chocolatey Ruby package v3.1.2.1 and below grants all users in the Authenticated Users group write privileges for the path C:\tools\ruby31 and all files located in that folder.
Affected products
2- Chocolatey/Ruby packagedescription
- Range: <=3.1.2.1
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.