support_uri parameter in the WARP client local settings file (mdm.xml) lacked proper validation which allowed for privilege escalation and launching an arbitrary executable on the local machine upon clicking on the "Send feedback" option. An attacker with access to the local file system could use a crafted XML config file pointing to a malicious file or set a local path to the executable using Cloudflare Zero Trust Dashboard (for Zero Trust enrolled clients).
References
Link | Resource |
---|---|
https://github.com/cloudflare/advisories/security/advisories/GHSA-h3j3-fhqg-66rh | Product Third Party Advisory |
Configurations
History
07 Nov 2023, 03:57
Type | Values Removed | Values Added |
---|---|---|
Summary | support_uri parameter in the WARP client local settings file (mdm.xml) lacked proper validation which allowed for privilege escalation and launching an arbitrary executable on the local machine upon clicking on the "Send feedback" option. An attacker with access to the local file system could use a crafted XML config file pointing to a malicious file or set a local path to the executable using Cloudflare Zero Trust Dashboard (for Zero Trust enrolled clients). |
19 Jan 2023, 14:56
Type | Values Removed | Values Added |
---|---|---|
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 8.0 |
References | (MISC) https://github.com/cloudflare/advisories/security/advisories/GHSA-h3j3-fhqg-66rh - Product, Third Party Advisory | |
CPE | cpe:2.3:a:cloudflare:warp:*:*:*:*:*:windows:*:* | |
CWE | CWE-20 | |
First Time |
Cloudflare
Cloudflare warp |
11 Jan 2023, 17:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2023-01-11 17:15
Updated : 2023-12-10 14:48
NVD link : CVE-2022-4428
Mitre link : CVE-2022-4428
CVE.ORG link : CVE-2022-4428
JSON object : View
Products Affected
cloudflare
- warp
CWE
CWE-20
Improper Input Validation