Lucene search
K

7 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-23666

Malicious code in bioql PyPI...

7.8CVSS7.6AI score0.00244EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/05/23 2:13 a.m.16 views

CVE-2023-1412

An unprivileged non-admin user can exploit an Improper Access Control vulnerability in the Cloudflare WARP Client for Windows = 2022.12.582.0 to perform privileged operations with SYSTEM context by working with a combination of opportunistic locks oplock and symbolic links which can both be creat...

7.8CVSS7AI score0.00244EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 10:23 p.m.8 views

CVE-2022-2145

Cloudflare WARP client for Windows up to v. 2022.5.309.0 allowed creation of mount points from its ProgramData folder. During installation of the WARP client, it was possible to escalate privileges and overwrite SYSTEM protected files...

7.8CVSS7.2AI score0.00294EPSS
Exploits0References1
Prion
Prion
added 2023/06/20 9:15 a.m.23 views

Improper access control

Cloudflare WARP client for Windows up to v2023.3.381.0 allowed a malicious actor to remotely access the warp-svc.exe binary due to an insufficient access control policy on an IPC Named Pipe. This would have enabled an attacker to trigger WARP connect and disconnect commands, as well as obtaining...

7.5CVSS7.1AI score0.00754EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2023/04/05 4:15 p.m.4 views

CVE-2023-1412

An unprivileged non-admin user can exploit an Improper Access Control vulnerability in the Cloudflare WARP Client for Windows = 2022.12.582.0 to perform privileged operations with SYSTEM context by working with a combination of opportunistic locks oplock and symbolic links which can both be creat...

7.8CVSS5.8AI score0.00244EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2023/04/05 3:22 p.m.10 views

CVE-2023-1412 Local Privilege Escalation Vulnerability in WARP's MSI Installer

An unprivileged non-admin user can exploit an Improper Access Control vulnerability in the Cloudflare WARP Client for Windows = 2022.12.582.0 to perform privileged operations with SYSTEM context by working with a combination of opportunistic locks oplock and symbolic links which can both be creat...

7CVSS7.3AI score0.00244EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2023/04/05 12:0 a.m.4 views

PT-2023-16965 · Cloudflare · Cloudflare Warp Client

Name of the Vulnerable Software and Affected Versions: Cloudflare WARP Client for Windows versions = 2022.12.582.0 Description: An unprivileged user can exploit an Improper Access Control issue to perform privileged operations with SYSTEM context by using a combination of opportunistic locks and...

7.8CVSS7.6AI score0.00244EPSS
Exploits0References6
Rows per page
Query Builder