2 matches found
CVE-2020-35152
CVE-2020-35152 affects Cloudflare WARP for Windows prior to version 1.2.2695.1, due to an unquoted service path that allows privilege escalation from non-administrative to administrator. The vulnerability is fixed in 1.2.2695.1 by adding quotes around the service binary path. All available connec...
CVE-2020-35152 Privilege escalation through unquoted service binary path on Cloudflare WARP for Windows
Cloudflare WARP for Windows allows privilege escalation due to an unquoted service path. A malicious user or process running with non-administrative privileges can become an administrator by abusing the unquoted service path issue. Since version 1.2.2695.1, the vulnerability was fixed by adding...