{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-05-03T19:58:58.107","vulnerabilities":[{"cve":{"id":"CVE-2023-0238","sourceIdentifier":"cna@cloudflare.com","published":"2023-08-29T15:15:07.773","lastModified":"2024-11-21T07:36:47.893","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Due to lack of a security policy, the WARP Mobile Client (<=6.29) for Android was susceptible to this vulnerability which allowed a malicious app installed on a victim's device to exploit a peculiarity in an Android function, wherein under certain conditions, the malicious app could dictate the task behaviour of the WARP app."},{"lang":"es","value":"Debido a la falta de una política de seguridad, el Cliente Móvil WARP (&lt;=6.29) para Android era susceptible a esta vulnerabilidad, lo que permitía que una aplicación maliciosa instalada en el dispositivo de una víctima explotara una peculiaridad en una función de Android, en la que, bajo ciertas condiciones, la aplicación maliciosa podía dictar el comportamiento de las tareas de la aplicación WARP."}],"metrics":{"cvssMetricV31":[{"source":"cna@cloudflare.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N","baseScore":3.9,"baseSeverity":"LOW","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":1.3,"impactScore":2.5},{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N","baseScore":5.5,"baseSeverity":"MEDIUM","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"HIGH","availabilityImpact":"NONE"},"exploitabilityScore":1.8,"impactScore":3.6}]},"weaknesses":[{"source":"cna@cloudflare.com","type":"Secondary","description":[{"lang":"en","value":"CWE-200"}]},{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-noinfo"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:cloudflare:warp:*:*:*:*:*:android:*:*","versionEndExcluding":"6.29","matchCriteriaId":"B2EF7B54-01B4-4588-83EF-FD8261AB795E"}]}]}],"references":[{"url":"https://developers.cloudflare.com/warp-client/","source":"cna@cloudflare.com","tags":["Product"]},{"url":"https://github.com/cloudflare/advisories/security/advisories/GHSA-23rx-f69w-g75c","source":"cna@cloudflare.com","tags":["Third Party Advisory"]},{"url":"https://developers.cloudflare.com/warp-client/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Product"]},{"url":"https://github.com/cloudflare/advisories/security/advisories/GHSA-23rx-f69w-g75c","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]}]}}]}