Type Confusion Vulnerability in Webroot Endpoint Agents

Type Confusion Vulnerability in Webroot Endpoint Agents

CVE-2020-5754 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H

Webroot endpoint agents prior to version v9.0.28.48 allows remote attackers to trigger a type confusion vulnerability over its listening TCP port, resulting in crashing or reading memory contents of the Webroot endpoint agent.

Learn more about our Web Application Penetration Testing UK.