Cloudflare WARP for Windows allows privilege escalation due to an unquoted service path. A malicious user or process running with non-administrative privileges can become an administrator by abusing the unquoted service path issue. Since version 1.2.2695.1, the vulnerability was fixed by adding quotes around the service's binary path. This issue affects Cloudflare WARP for Windows, versions prior to 1.2.2695.1.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: cloudflare
Published: 2021-02-02T23:35:31.270649Z
Updated: 2024-09-16T22:25:07.987Z
Reserved: 2020-12-11T00:00:00
Link: CVE-2020-35152
Vulnrichment
No data.
NVD
Status : Modified
Published: 2021-02-03T00:15:14.563
Modified: 2024-11-21T05:26:52.477
Link: CVE-2020-35152
Redhat
No data.