Lucene search
Veracode Vulnerability DatabaseVERACODE:39956HistoryMar 25, 2023 - 2:08 a.m.
Privilege Escalation
2023-03-2502:08:24
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
18
cloudflared
vulnerability
privilege escalation
msi installer
windows
system files
EPSS
0
Percentile
5.1%
github.com/cloudflare/cloudflared is vulnerable to Privilege Escalation. A local attacker with no administrative permissions may use symbolic links to manipulate the MSI installer’s repair functionality to delete important system files or replace them with malicious files, potentially leading to the device being compromised. Please note that this vulnerability only affects 32 bit Windows devices.
References
Related
nvd
nvd
CVE-2023-1314
2023-03-21 12:15:10
prion
prion
Design/Logic Flaw
2023-03-21 12:15:00
osv
osv
CVE-2023-1314
2023-03-21 12:15:10
cloudflared's Installer has Local Privilege Escalation Vulnerability in github.com/cloudflare/cloudflared
2024-08-20 20:29:17
cloudflared's Installer has Local Privilege Escalation Vulnerability
2023-03-21 22:32:50
cve
cve
CVE-2023-1314
2023-03-21 12:15:10
cvelist
cvelist
github
github
cloudflared's Installer has Local Privilege Escalation Vulnerability
2023-03-21 22:32:50