VYPR

Ruby package

by Chocolatey

CVEs (1)

  • CVE-2022-45301MedNov 29, 2022
    risk 0.28cvss 4.3epss 0.00

    Insecure permissions in Chocolatey Ruby package v3.1.2.1 and below grants all users in the Authenticated Users group write privileges for the path C:\tools\ruby31 and all files located in that folder.