`cloudflared` versions prior to 2020.8.1 contain a local privilege escalation vulnerability on Windows systems. When run on a Windows system, `cloudflared` searches for configuration files which could be abused by a malicious entity to execute commands as a privileged user. Version 2020.8.1 fixes this issue.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: cloudflare

Published: 2020-10-02T14:16:23.809007Z

Updated: 2024-09-17T01:46:28.741Z

Reserved: 2020-08-14T00:00:00

Link: CVE-2020-24356

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2020-10-02T15:15:12.483

Modified: 2024-11-21T05:14:39.480

Link: CVE-2020-24356

cve-icon Redhat

No data.