Local Privilege Escalation in cloudflared
CVE-2020-24356
6.4MEDIUM
What is CVE-2020-24356?
cloudflared versions prior to 2020.8.1 contain a local privilege escalation vulnerability on Windows systems. When run on a Windows system, cloudflared searches for configuration files which could be abused by a malicious entity to execute commands as a privileged user. Version 2020.8.1 fixes this issue.
Affected Version(s)
cloudflared < 2020.8.1