Security Advisory

CVE-2022-45306

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-11-29 00:00:00

Last updated 2025-04-25 14:45:33

Assigner mitre

State PUBLISHED

Description

Insecure permissions in Chocolatey Azure-Pipelines-Agent package v2.211.1 and below grants all users in the Authenticated Users group write privileges for the subfolder C:agent and all files located in that folder.

← Browse all CVEs View on cve.org ↗