Grafana Alloy on Windows has Unquoted Search Path or Element vulnerability
Moderate severity
GitHub Reviewed
Published
Sep 25, 2024
to the GitHub Advisory Database
•
Updated Oct 9, 2024
Package
Affected versions
< 1.3.4
>= 1.4.0-rc.0, < 1.4.1
Patched versions
1.3.4
1.4.1
Description
Published by the National Vulnerability Database
Sep 25, 2024
Published to the GitHub Advisory Database
Sep 25, 2024
Reviewed
Oct 1, 2024
Last updated
Oct 9, 2024
Unquoted Search Path or Element vulnerability in Grafana Alloy on Windows allows Privilege Escalation from Local User to SYSTEM.
This issue affects Alloy: before 1.3.4, from 1.4.0-rc.0 and prior to 1.4.1.
References