VYPR
← All advisories
Unrated severityNVD Advisory· Published Jun 20, 2023· Updated Dec 9, 2024

Remote access to warp-svc.exe in Cloudflare WARP

CVE-2023-1862

Description

Cloudflare WARP client for Windows (up to v2023.3.381.0) allowed a malicious actor to remotely access the warp-svc.exe binary due to an insufficient access control policy on an IPC Named Pipe. This would have enabled an attacker to trigger WARP connect and disconnect commands, as well as obtaining network diagnostics and application configuration from the target's device. It is important to note that in order to exploit this, a set of requirements would need to be met, such as the target's device must've been reachable on port 445, allowed authentication with NULL sessions or otherwise having knowledge of the target's credentials.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Cloudflare WARP for Windows (≤v2023.3.381.0) allowed remote attackers to control the service via an insecure IPC named pipe, enabling command execution and data exfiltration.

Vulnerability

Cloudflare WARP client for Windows versions up to v2023.3.381.0 contained an insufficient access control policy on an IPC Named Pipe used by the warp-svc.exe service. This allowed unauthorized remote access to the named pipe, enabling command injection and data retrieval. [2]

Exploitation

An attacker could exploit this vulnerability if the target device was reachable on port 445 and allowed NULL session authentication or the attacker had valid credentials. By connecting to the named pipe, the attacker could send commands to trigger WARP connect/disconnect and retrieve network diagnostics and application configuration. [2]

Impact

Successful exploitation allowed an attacker to remotely control the WARP service (connect/disconnect) and obtain sensitive information including network diagnostics and application configuration from the target device. No privilege escalation or code execution was reported. [2]

Mitigation

The vulnerability was fixed in Cloudflare WARP client version 2023.3.381.0. Users should update to this version or later. No workarounds were provided. [2]

References
  1. Remote access to warp-svc.exe in Cloudflare WARP

AI Insight generated on May 25, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.

Affected products

2

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

3

News mentions

0

No linked articles in our index yet.