CVE Vulnerability

CVE-2022-4428

support_uri parameter in the WARP client local settings file (mdm.xml) lacked proper validation which allowed for privilege escalation and launching an arbitrary executable on the local machine upon clicking on the "Send feedback" option. An attacker with access to the local file system could use a crafted XML config file pointing to a malicious file or set a local path to the executable using Cloudflare Zero Trust Dashboard (for Zero Trust enrolled clients).

8 /10

CVSS v3.0 : HIGH

V3 Legend

Vector :

Exploitability : 2.1 / Impact : 5.9

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required LOW

User Interaction REQUIRED

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

References
Link Resource
https://github.com/cloudflare/advisories/security/advisories/GHSA-h3j3-fhqg-66rh Product Third Party Advisory
Configurations

Configuration 1

cpe:2.3:a:cloudflare:warp:*:*:*:*:*:windows:*:*
Information

Published : 2023-01-11 05:15

Updated : 2023-01-19 02:56

NVD link : CVE-2022-4428

Mitre link : CVE-2022-4428

Products Affected
No products.
CWE
CWE-20