Filtered by vendor Chocolatey Subscriptions
Filtered by product Chocolatey Azure-pipelines-agent Subscriptions
Total 1 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2022-45306 1 Chocolatey 1 Chocolatey Azure-pipelines-agent 2024-11-21 4.3 Medium
Insecure permissions in Chocolatey Azure-Pipelines-Agent package v2.211.1 and below grants all users in the Authenticated Users group write privileges for the subfolder C:\agent and all files located in that folder.