Support Us — Your donation helps us keep running

Goal: 1000 CNY,Raised: 1000 CNY

100.0%
Donate Now

WARP — Vulnerabilities & Security Advisories 20

All 20 CVE vulnerabilities found in WARP, with AI-generated Chinese analysis, references, and POCs.

Vendor: FatPipe

CVE IDTitleCVSSSeverityPaused
CVE-2025-0651 File symlink abuse might lead to deleting files belonging to SYSTEM user CWE-269 7.1 -2025-01-22
CVE-2023-2754 Plaintext transmission of DNS requests in Windows 1.1.1.1 WARP client CWE-319 7.4 High2023-08-03
CVE-2023-0652 Local Privilege Escalation in Cloudflare WARP Installer (Windows) CWE-59 7.0 High2023-04-06
CVE-2023-1412 Local Privilege Escalation Vulnerability in WARP's MSI Installer CWE-59 7.0 High2023-04-05
CVE-2022-4428 support_uri validation missing in WARP client for Windows CWE-20 8.9 High2023-01-11
CVE-2022-4457 WARP client manifest misconfiguration leading to Task Hijacking CWE-200 5.5 Medium2023-01-11
CVE-2022-3320 Bypassing Cloudflare Zero Trust policies using warp-cli set-custom-endpoint command CWE-862 6.7 Medium2022-10-28
CVE-2022-3322 Lock WARP switch bypass on WARP mobile client using iOS quick action CWE-862 6.7 Medium2022-10-28
CVE-2022-3337 Lock WARP switch bypass by removing VPN profile on iOS mobile client CWE-862 6.7 Medium2022-10-28
CVE-2022-3321 Lock WARP switch feature bypass on WARP mobile client for iOS CWE-862 6.7 Medium2022-10-28
CVE-2022-3512 Lock WARP switch bypass using warp-cli 'add-trusted-ssid' command CWE-862 6.7 Medium2022-10-28
CVE-2022-2225 Zero Trust Secure Web Gateway policies bypass using WARP client subcommands CWE-284 8.1 High2022-07-26
CVE-2022-2145 Cloudlfare WARP Arbitrary File Overwrite CWE-20 5.8 Medium2022-06-28
CVE-2022-2147 Unquoted Service Path in Cloudflare WARP for Windows CWE-428 6.5 Medium2022-06-23
CVE-2021-27859 Missing authorization vulnerability in FatPipe software CWE-862 8.8 High2021-12-15
CVE-2021-27858 Missing authorization vulnerability in FatPipe software CWE-862 5.3 Medium2021-12-15
CVE-2021-27857 FatPipe software allows unauthenticated configuration download CWE-862 7.5 High2021-12-15
CVE-2021-27856 FatPipe software administrative account with no password 9.8 Critical2021-12-15
CVE-2021-27855 FatPipe software allows privilege escalation CWE-862 8.8 High2021-12-15
CVE-2021-27860 Arbitrary file upload vulnerability in FatPipe software 9.8 Critical2021-12-08

All 20 known CVE vulnerabilities affecting WARP with full Chinese analysis, references, and POCs where available.