CVE-2022-3321

Name of the Vulnerable Software and Affected Versions Cloudflare WARP iOS mobile client (affected versions not specified)

Description The issue allowed users to bypass the Lock WARP switch feature on the WARP iOS mobile client. This was possible by enabling both "Disable for cellular networks" and "Disable for Wi-Fi networks" switches simultaneously in the application settings, causing the WARP client to disconnect. As a result, users could bypass restrictions and policies enforced by the Zero Trust platform.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.