Primary

Context

Cloudflare WARP Client Privilege Escalation Vulnerability Allowing Arbitrary Executable Execution

Vulnerability

Patched

A vulnerability in the Cloudflare WARP client for Windows, in versions through 2022.10.106.0, allows for privilege escalation and the execution of arbitrary executables on the local machine. This issue arises from the 'support_uri' parameter in the local settings file (mdm.xml), which lacked proper validation. An attacker with access to the local file system could craft an XML configuration file that points to a malicious file or set a local path to an executable, using the Cloudflare Zero Trust Dashboard for clients enrolled in Zero Trust.

Impact

Exploitation of this vulnerability could lead to unauthorized privilege escalation and the execution of arbitrary files as executables on the affected system.

Remediation

Users are advised to upgrade to the latest version of the Cloudflare WARP client for Windows, version 2022.12.476.0 or later.

Added: Mar 11, 2026, 7:14 PM

Updated: Mar 11, 2026, 7:14 PM

Vulnerability Rating

Custom Algorithm

spread

6.6

impact

2.5

exploitability

2.4

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

6.6

impact

2.5

exploitability

2.4

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Cloudflare WARP Client Privilege Escalation Vulnerability Allowing Arbitrary Executable Execution

Vulnerability

Impact

Remediation

Affected Products

Cloudflare WARP Client

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating