CVE-2025-0651

Name of the Vulnerable Software and Affected Versions Cloudflare WARP versions prior to 2024.12.492.0

Description The issue is related to improper privilege management in Cloudflare WARP on Windows, allowing file manipulation. A user with low system privileges can create symlinks inside the C:ProgramDataCloudflarewarp-diag-partials folder. After triggering the 'Reset all settings' option, the WARP service, which operates with System privileges, will delete the files that the symlink was pointing to, potentially leading to the deletion of files owned by the System user.

Recommendations For versions prior to 2024.12.492.0, update to version 2024.12.492.0 or later to resolve the issue. As a temporary workaround, consider restricting access to the C:ProgramDataCloudflarewarp-diag-partials folder to prevent the creation of symlinks. Additionally, avoid using the 'Reset all settings' option until the update is applied.