support_uri parameter in the WARP client local settings file (mdm.xml) lacked proper validation which allowed for privilege escalation and launching an arbitrary executable on the local machine upon clicking on the "Send feedback" option. An attacker with access to the local file system could use a crafted XML config file pointing to a malicious file or set a local path to the executable using Cloudflare Zero Trust Dashboard (for Zero Trust enrolled clients).
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: cloudflare
Published: 2023-01-11T16:49:36.512Z
Updated: 2024-08-03T01:41:44.657Z
Reserved: 2022-12-12T16:15:55.217Z
Link: CVE-2022-4428
Vulnrichment
No data.
NVD
Status : Modified
Published: 2023-01-11T17:15:09.383
Modified: 2024-11-21T07:35:14.653
Link: CVE-2022-4428
Redhat
No data.