CVE-2020-35152

Name of the Vulnerable Software and Affected Versions: Cloudflare WARP for Windows versions prior to 1.2.2695.1

Description: The issue allows privilege escalation due to an unquoted service path. A malicious user or process running with non-administrative privileges can become an administrator by abusing the unquoted service path issue. The vulnerability was fixed by adding quotes around the service's binary path.

Recommendations: For versions prior to 1.2.2695.1, update to version 1.2.2695.1 or later to resolve the issue. As a temporary workaround, consider restricting access to the service until a patch is applied.