CVE-2022-2147
6.5
CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H
Summary
Cloudflare Warp for Windows from version 2022.2.95.0 contained an unquoted service path which enables arbitrary code execution leading to privilege escalation. The fix was released in version 2022.3.186.0.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Cloudflare | WARP | 2022.2.95.0 < unspecified | affected |
| Cloudflare | WARP | unspecified < 2022.3.186.0 | affected |
Weaknesses
- CWE-428: CWE-428 Unquoted Search Path or Element
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.