3 matches found
CVE-2022-3337 Lock WARP switch bypass by removing VPN profile on iOS mobile client
It was possible for a user to delete a VPN profile from WARP mobile client on iOS platform despite the Lock WARP switch https://developers.cloudflare.com/cloudflare-one/connections/connect-devices/warp/warp-settings/lock-warp-switch feature being enabled on Zero Trust Platform. This led to...
CVE-2022-3337 Lock WARP switch bypass by removing VPN profile on iOS mobile client
It was possible for a user to delete a VPN profile from WARP mobile client on iOS platform despite the Lock WARP switch https://developers.cloudflare.com/cloudflare-one/connections/connect-devices/warp/warp-settings/lock-warp-switch feature being enabled on Zero Trust Platform. This led to...
CVE-2022-3337
Cloudflare WARP on iOS is affected by CVE-2022-3337: a user can delete the VPN profile despite the Lock WARP switch being enabled, bypassing policies enforced by the Zero Trust platform on enrolled devices. Affected product is the Cloudflare WARP mobile client for iOS; the vulnerability relates t...