Cloudflare WARP client for Windows (up to v. 2022.5.309.0) allowed creation of mount points from its ProgramData folder. During installation of the WARP client, it was possible to escalate privileges and overwrite SYSTEM protected files.
References
Link | Resource |
---|---|
https://github.com/cloudflare/advisories/security/advisories/GHSA-6fpc-qxmr-6wrq | Release Notes Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: cloudflare
Published: 2022-06-28T17:45:20
Updated: 2022-06-28T17:45:20
Reserved: 2022-06-21T00:00:00
Link: CVE-2022-2145
JSON object: View
NVD Information
Status : Analyzed
Published: 2022-06-28T18:15:08.247
Modified: 2022-07-08T13:37:24.743
Link: CVE-2022-2145
JSON object: View
Redhat Information
No data.