CVE-2020-35152

Published: Feb 3, 2021Modified: Nov 21, 2024

7.8

Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Exploitability: 1.8 / Impact: 5.9

Source: NVD

Description

Cloudflare WARP for Windows allows privilege escalation due to an unquoted service path. A malicious user or process running with non-administrative privileges can become an administrator by abusing the unquoted service path issue. Since version 1.2.2695.1, the vulnerability was fixed by adding quotes around the service's binary path. This issue affects Cloudflare WARP for Windows, versions prior to 1.2.2695.1.

Affected (1)

Products: Cloudflare: Warp

1 product

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Cloudflare Warp	Before 1.2.2695.1

Related CWEs

Unquoted Search Path or Element

The product uses a search path that contains an unquoted element, in which the element contains whitespace or other separators. This can cause the product to access resources in a parent path.

References (2)

https://github.com/cloudflare/advisories/security/advisories/GHSA-qc57-v5q8-f22h

Source: cna@cloudflare.com

Third Party Advisory

https://github.com/cloudflare/advisories/security/advisories/GHSA-qc57-v5q8-f22h

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

Timeline

No history available yet.