Vulnerabilities > CVE-2023-29820 - Exposure of Resource to Wrong Sphere vulnerability in Webroot Secureanywhere

CVSS 5.5 - MEDIUM

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

HIGH

Integrity impact

NONE

Availability impact

NONE

local

low complexity

webroot

CWE-668

NVD

Published: 2023-05-12

Updated: 2024-04-11

Summary

An issue found in Webroot SecureAnywhere Endpoint Protection CE 23.1 v.9.0.33.39 and before allows a local attacker to access sensitive information via the EXE installer. NOTE: the vendor's perspective is that this is not a separate vulnerability relative to CVE-2023-29818 and CVE-2023-29819.

Vulnerable Configurations

Part	Description	Count
Application	Webroot Webroot Secureanywhere 8.0.1.161 Webroot Secureanywhere 8.0.1.165 Webroot Secureanywhere 8.0.1.173 Webroot Secureanywhere 8.0.1.177 Webroot Secureanywhere 8.0.1.184 Webroot Secureanywhere 8.0.1.193 Webroot Secureanywhere 8.0.1.203 Webroot Secureanywhere 8.0.1.229 Webroot Secureanywhere 8.0.1.231 Webroot Secureanywhere 8.0.1.233 Webroot Secureanywhere 8.0.2.14 Webroot Secureanywhere 8.0.2.20 Webroot Secureanywhere 8.0.2.27 Webroot Secureanywhere 8.0.2.37 Webroot Secureanywhere 8.0.2.43 Webroot Secureanywhere 8.0.2.66 Webroot Secureanywhere 8.0.2.79 Webroot Secureanywhere 8.0.2.85 Webroot Secureanywhere 8.0.2.93 Webroot Secureanywhere 8.0.2.96 Webroot Secureanywhere 8.0.2.105 Webroot Secureanywhere 8.0.2.109 Webroot Secureanywhere 8.0.2.118 Webroot Secureanywhere 8.0.2.127 Webroot Secureanywhere 8.0.2.145 Webroot Secureanywhere 8.0.2.147 Webroot Secureanywhere 8.0.2.155 Webroot Secureanywhere 8.0.2.167 Webroot Secureanywhere 8.0.2.174 Webroot Secureanywhere 8.0.3.3 Webroot Secureanywhere 8.0.4.17 Webroot Secureanywhere 8.0.4.24 Webroot Secureanywhere 8.0.4.42 Webroot Secureanywhere 8.0.4.46 Webroot Secureanywhere 8.0.4.57 Webroot Secureanywhere 8.0.4.61 Webroot Secureanywhere 8.0.4.63 Webroot Secureanywhere 8.0.4.66 Webroot Secureanywhere 8.0.4.68 Webroot Secureanywhere 8.0.4.70 Webroot Secureanywhere 8.0.4.73 Webroot Secureanywhere 8.0.4.84 Webroot Secureanywhere 8.0.4.104 Webroot Secureanywhere 8.0.4.115 Webroot Secureanywhere 8.0.4.123 Webroot Secureanywhere 8.0.4.131 Webroot Secureanywhere 8.0.5.107 Webroot Secureanywhere 8.0.5.109 Webroot Secureanywhere 8.0.5.111 Webroot Secureanywhere 8.0.6.28 Webroot Secureanywhere 8.0.6.44 Webroot Secureanywhere 8.0.7.26 Webroot Secureanywhere 8.0.7.28 Webroot Secureanywhere 8.0.7.33 Webroot Secureanywhere 8.0.8.53 Webroot Secureanywhere 8.0.8.76 Webroot Secureanywhere 8.0.8.88 Webroot Secureanywhere 9.0.0.64 Webroot Secureanywhere 9.0.1.35 Webroot Secureanywhere 9.0.2.21 Webroot Secureanywhere 9.0.3.37 Webroot Secureanywhere 9.0.4.7 Webroot Secureanywhere 9.0.5.8 Webroot Secureanywhere 9.0.6.14 Webroot Secureanywhere 9.0.6.18 Webroot Secureanywhere 9.0.7.42 Webroot Secureanywhere 9.0.7.46 Webroot Secureanywhere 9.0.8.34 Webroot Secureanywhere 9.0.8.69 Webroot Secureanywhere 9.0.8.72 Webroot Secureanywhere 9.0.8.80 Webroot Secureanywhere 9.0.8.100 Webroot Secureanywhere 9.0.9.78 Webroot Secureanywhere 9.0.10.10 Webroot Secureanywhere 9.0.10.17 Webroot Secureanywhere 9.0.10.19 Webroot Secureanywhere 9.0.10.21 Webroot Secureanywhere 9.0.11.70 Webroot Secureanywhere 9.0.12.52 Webroot Secureanywhere 9.0.13.50 Webroot Secureanywhere 9.0.13.62 Webroot Secureanywhere 9.0.14.58 Webroot Secureanywhere 9.0.15.40 Webroot Secureanywhere 9.0.17.24 Webroot Secureanywhere 9.0.17.28 Webroot Secureanywhere 9.0.18.34 Webroot Secureanywhere 9.0.18.38 Webroot Secureanywhere 9.0.18.44 Webroot Secureanywhere 9.0.19.36 Webroot Secureanywhere 9.0.19.43 Webroot Secureanywhere 9.0.20.31 Webroot Secureanywhere 9.0.21.18 Webroot Secureanywhere 9.0.23.32 Webroot Secureanywhere 9.0.24.28 Webroot Secureanywhere 9.0.24.37 Webroot Secureanywhere 9.0.24.49	96

Common Weakness Enumeration (CWE)

CWE-668 - Exposure of Resource to Wrong Sphere

Summary

Vulnerable Configurations

Common Weakness Enumeration (CWE)

References