VYPR
Moderate severityNVD Advisory· Published Sep 25, 2024· Updated Sep 26, 2024

Grafana Alloy on Windows Unquoted service path

CVE-2024-8975

Description

Unquoted Search Path or Element vulnerability in Grafana Alloy on Windows allows Privilege Escalation from Local User to SYSTEM This issue affects Alloy: before 1.3.3, from 1.4.0-rc.0 through 1.4.0-rc.1.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
github.com/grafana/alloyGo
< 1.3.41.3.4
github.com/grafana/alloyGo
>= 1.4.0-rc.0, < 1.4.11.4.1

Affected products

10

Patches

Vulnerability mechanics

References

12

News mentions

0

No linked articles in our index yet.