Lucene search
Alpine Linux Development TeamALPINE:CVE-2020-35152HistoryFeb 03, 2021 - 12:15 a.m.
CVE-2020-35152
2021-02-0300:15:00
Alpine Linux Development Team
security.alpinelinux.org
13
0.0004 Low
EPSS
Percentile
12.3%
Cloudflare WARP for Windows allows privilege escalation due to an unquoted service path. A malicious user or process running with non-administrative privileges can become an administrator by abusing the unquoted service path issue. Since version 1.2.2695.1, the vulnerability was fixed by adding quotes around the service’s binary path. This issue affects Cloudflare WARP for Windows, versions prior to 1.2.2695.1.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Alpine | 3.18-community | noarch | warp | = 0.5.4-r0 | UNKNOWN |
| Alpine | 3.19-community | noarch | warp | = 0.6.2-r0 | UNKNOWN |
| Alpine | edge-community | noarch | warp | = 0.7.0-r0 | UNKNOWN |
Related
cvelist
cvelist
cve
cve
CVE-2020-35152
2021-02-03 00:15:00
prion
prion
Path traversal
2021-02-03 00:15:00
openvas
openvas
Microsoft Windows Unquoted Path Vulnerability (SMB Login)
2018-03-23 00:00:00