12 matches found
CVE-2022-2225
CVE-2022-2225 affects Cloudflare WARP client. A local attacker can bypass Zero Trust security policies and features like “Lock WARP switch” by using warp-cli subcommands (disable-ethernet, disable-wifi) without admin privileges. Reported impacts include bypass of Secure Web Gateway policies; expl...
CVE-2023-2754
CVE-2023-2754 describes a vulnerability in the Cloudflare WARP Windows client where DNS queries can be exposed on the local network. When connected over an IPv6-capable network, the WARP client does not assign loopback IPv6 addresses; instead, it uses Unique Local Addresses, which under certain c...
CVE-2020-35152
CVE-2020-35152 affects Cloudflare WARP for Windows prior to version 1.2.2695.1, due to an unquoted service path that allows privilege escalation from non-administrative to administrator. The vulnerability is fixed in 1.2.2695.1 by adding quotes around the service binary path. All available connec...
CVE-2025-0651
CVE-2025-0651 describes an improper privilege management issue in Cloudflare WARP for Windows. A low-privilege user can create a set of symlinks in C:\ProgramData\Cloudflare\warp-diag-partials. When a user triggers the “Reset all settings” option, the WARP service (running with System privileges)...
CVE-2022-2145
CVE-2022-2145 affects Cloudflare WARP Client for Windows up to version 2022.5.309.0. The issue enables creation of mount points from the ProgramData folder during installation, enabling local privilege escalation and overwriting SYSTEM-protected files. Reports in NVD/Red Hat/CVE records describe ...
CVE-2022-3512
CVE-2022-3512 affects Cloudflare WARP by allowing a user to disconnect the WARP client and bypass the Lock WARP switch using the warp-cli add-trusted-ssid command, enabling Zero Trust policies not to be enforced on the endpoint. The available sources consistently describe the bypass vector and it...
CVE-2022-4457
The CVE-2022-4457 issue concerns the WARP client for Android, where a misconfiguration in the app manifest enables a task hijacking attack. This could let a malicious app hijack legitimate apps and potentially exfiltrate sensitive data when installed on a victim’s device. Documented details acros...
CVE-2023-1412
The CVE-2023-1412 issue affects Cloudflare WARP Client for Windows (versions ≤ 2022.12.582.0). The root cause is an Improper Access Control in the MSI installer repair function stored under C:\Windows\Installer, exploitable by an unprivileged user to execute privileged SYSTEM context operations v...
CVE-2022-3320
Summary: CVE-2022-3320 affects Cloudflare WARP/Zero Trust deployments where the warp-cli set-custom-endpoint subcommand can be used with an unreachable endpoint, causing the WARP Client to disconnect and bypass administrative restrictions on a Zero Trust enrolled endpoint. Multiple connected sour...
CVE-2023-0654
CVE-2023-0654 affects the WARP Mobile Client for Android, prior to version 6.29. The vulnerability results from a misconfiguration that allows tapjacking, enabling a malicious app to deceive users into thinking the attacker’s UI is the WARP client (spoofing user activity loads). Evidence across m...
CVE-2023-0652
CVE-2023-0652 is a Local Privilege Escalation in Cloudflare WARP Installer (Windows). The issue stems from a hardlink created in the ProgramData folder during the repair process, where the MSI-based installer could forge the hardlink’s destination, enabling privilege escalation and overwriting SY...
CVE-2023-0238
CVE-2023-0238 affects Cloudflare WARP Mobile Client for Android, versions