Vulnerabilities > CVE-2023-29820 - Exposure of Resource to Wrong Sphere vulnerability in Webroot Secureanywhere

047910
CVSS 5.5 - MEDIUM
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
LOW
Confidentiality impact
HIGH
Integrity impact
NONE
Availability impact
NONE
local
low complexity
webroot
CWE-668

Summary

An issue found in Webroot SecureAnywhere Endpoint Protection CE 23.1 v.9.0.33.39 and before allows a local attacker to access sensitive information via the EXE installer. NOTE: the vendor's perspective is that this is not a separate vulnerability relative to CVE-2023-29818 and CVE-2023-29819.

Vulnerable Configurations

Part Description Count
Application
Webroot
96

Common Weakness Enumeration (CWE)