Local Privilege Escalation in HashiCorp Vagrant VMware Fusion Plugin
CVE-2017-7642

7.8HIGH

Key Information:

Vendor
Hashicorp
Status
Vagrant Vmware Fusion
Vendor
CVE Published:
2 August 2017

Summary

The HashiCorp Vagrant VMware Fusion plugin prior to version 4.0.21 contains a vulnerability that allows local users to escalate their privileges to root. This occurs due to insufficient verification of the path to the encoded Ruby script and a failure to adequately scrub the PATH variable. Exploiting this flaw could lead to unauthorized access and control over the host system, thereby compromising its security.

References

http://seclists.org/fulldisclosure/2017/Jul/29
mailing-listx_refsource_FULLDISC
https://github.com/hashicorp/vagrant-plugin-changelog/blo...
x_refsource_CONFIRM
https://www.exploit-db.com/exploits/42334/
exploitx_refsource_EXPLOIT-DB

CVSS V3.1

Score:
7.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.