3 matches found
CVE-2020-24356
cloudflared versions prior to 2020.8.1 contain a local privilege escalation vulnerability on Windows systems. When run on a Windows system, cloudflared searches for configuration files which could be abused by a malicious entity to execute commands as a privileged user. Version 2020.8.1 fixes thi...
CVE-2020-24356
Cloudflared on Windows prior to 2020.8.1 is affected by a local privilege escalation. The vulnerability arises from how cloudflared searches for and reads configuration files; a misconfiguration in a malformed config.yaml can cause the program to write logs or execute commands via a user-controll...
CVE-2020-24356 Local Privilege Escalation in cloudflared
cloudflared versions prior to 2020.8.1 contain a local privilege escalation vulnerability on Windows systems. When run on a Windows system, cloudflared searches for configuration files which could be abused by a malicious entity to execute commands as a privileged user. Version 2020.8.1 fixes thi...