CVE-2022-2225
Zero Trust Secure Web Gateway policies bypass using WARP client subcommands By using warp-cli subcommands (disable-ethernet, disable-wifi), it was possible for a user without admin privileges to bypass configured Zero Trust security policies (e.g. Secure Web Gateway policies) and features such as 'Lock WARP switch'.
We have discovered 180 live websites that are affected by CVE-2022-2225.
Contact us to get more info
Affected Software
| |
---|
Product | Warp |
Category | Web Servers |
Vulnerable Versions | |
Total Vulnerable Versions | 38 |
Vulnerable Domains | 180 live websites (100.00% of Warp install base) |
Common Weakness Enumeration
CWE-284 Improper Access Control
Distribution by Website Rank
The diagram provides a graphic representation of the correlation between the occurrence of CVE-2022-2225 and the relative popularity of websites