CVE-2022-2147

Summary

Cloudflare Warp for Windows from version 2022.2.95.0 contained an unquoted service path which enables arbitrary code execution leading to privilege escalation. The fix was released in version 2022.3.186.0.

Affected Software

VendorProductVersion RangeStatus
CloudflareWARP2022.2.95.0 < unspecifiedaffected
CloudflareWARPunspecified < 2022.3.186.0affected

Weaknesses

  • CWE-428: CWE-428 Unquoted Search Path or Element

ADP Enrichment

CVE Program Container

Additional References

References