`cloudflared` versions prior to 2020.8.1 contain a local privilege escalation vulnerability on Windows systems. When run on a Windows system, `cloudflared` searches for configuration files which could be abused by a malicious entity to execute commands as a privileged user. Version 2020.8.1 fixes this issue.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: cloudflare
Published: 2020-10-02T14:16:23.809007Z
Updated: 2024-09-17T01:46:28.741Z
Reserved: 2020-08-14T00:00:00
Link: CVE-2020-24356
Vulnrichment
No data.
NVD
Status : Modified
Published: 2020-10-02T15:15:12.483
Modified: 2024-11-21T05:14:39.480
Link: CVE-2020-24356
Redhat
No data.