alpine · CVE-2022-2145

Quick triage

Priority: high Published: Updated:

View at Official alpine advisory, NVD, CVE.org · CVE detail

Freshness: no update timestamp found; verify against the upstream OS advisory manually.

Tracker summary

CVE-2022-2145: 1 source package rows (warp); 13 state rows across 6 repos (3.18-community, 3.19-community, 3.20-community, 3.22-community, 3.23-community, edge-community); fixed 0, open 13.

Description:

Cloudflare WARP client for Windows (up to v. 2022.5.309.0) allowed creation of mount points from its ProgramData folder. During installation of the WARP client, it was possible to escalate privileges and overwrite SYSTEM protected files.

cvelogic Threat Intelligence