CVE-2024-27294 | danielparks puppet-golang up to 1.2.6 on macOS dp-golang permission assignment (GHSA-8h8m-h98f-vv84)

Inserito da Angelo Barbosa | Mar 1, 2024 | CVE

A vulnerability was found in danielparks puppet-golang up to 1.2.6 on macOS. It has been classified as problematic. This affects an unknown part of the component dp-golang. The manipulation leads to incorrect permission assignment.

This vulnerability is uniquely identified as CVE-2024-27294. Attacking locally is a requirement. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-27294 | danielparks puppet-golang up to 1.2.6 on macOS dp-golang permission assignment (GHSA-8h8m-h98f-vv84)

Post correlati

CVE-2023-49378 | JFinalCMS 5.0.0 /admin/form/save cross-site request forgery

CVE-2024-35662 | Andreas Sofantzis Simple COD Fees for WooCommerce Plugin up to 2.0.2 on WordPress authorization

CVE-2024-44160 | Apple macOS up to 13.6/14.6 Texture buffer overflow

CVE-2024-38462 | iRODS up to 4.3.1 mail mailMS.cpp msiSendMail Privilege Escalation