Locutus15

**Name of the Vulnerable Software and Affected Versions** WARP Client for Windows versions <= 2022.12.582.0 WARP Client for Windows versions up to 2022.5.309.0 **Description** The issue allows a malicious attacker to escalate privileges and overwrite SYSTEM protected files by forging the destination of a hardlink created in the ProgramData folder during the repair process of the software. This is possible due to the installer (MSI) allowing the creation of mount points from its ProgramData folder. **Recommendations** For WARP Client for Windows versions <= 2022.12.582.0, update to a version later than 2022.12.582.0 to resolve the issue. For WARP Client for Windows versions up to 2022.5.309.0, update to a version later than 2022.5.309.0 to resolve the issue. As a temporary workaround, consider restricting access to the ProgramData folder to minimize the risk of exploitation.