CVE-2022-4457

Description

Due to a misconfiguration in the manifest file of the WARP client for Android, it was possible to a perform a task hijacking attack. An attacker could create a malicious mobile application which could hijack legitimate app and steal potentially sensitive information when installed on the victim's device.

Related CPE's

a cloudflare warp *****android **

References

https://github.com/cloudflare/advisories/security/advisories/GHSA-35f7-fqrc-4hhj

ProductThird Party Advisory

CvssV3 impact

Could not find any metrics

CvssV2 impact

Could not find any metrics

Created by Yello

About Severity.io