Vulnerabilities (CVE)

Filtered by vendor Webroot Subscribe
Filtered by product Endpoint Agents
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2020-5755 1 Webroot 1 Endpoint Agents 2024-11-21 6.9 MEDIUM 7.8 HIGH
Webroot endpoint agents prior to version v9.0.28.48 did not protect the "%PROGRAMDATA%\WrData\PKG" directory against renaming. This could allow attackers to trigger a crash or wait upon Webroot service restart to rewrite and hijack dlls in this directory for privilege escalation.
CVE-2020-5754 1 Webroot 1 Endpoint Agents 2024-11-21 6.4 MEDIUM 9.1 CRITICAL
Webroot endpoint agents prior to version v9.0.28.48 allows remote attackers to trigger a type confusion vulnerability over its listening TCP port, resulting in crashing or reading memory contents of the Webroot endpoint agent.