Vulnerabilities > Drweb

DATE CVE VULNERABILITY TITLE RISK
2021-09-24 CVE-2021-28130 Uncontrolled Search Path Element vulnerability in Drweb Security Space 12.5.2.4160
Dr.Web Firewall 12.5.2.4160 on Windows incorrectly restricts applications signed by Dr.Web.
local
low complexity
drweb CWE-427
7.8
2021-03-08 CVE-2020-23967 Improper Verification of Cryptographic Signature vulnerability in Drweb Security Space 11.0/12.0
Dr.Web Security Space versions 11 and 12 allow elevation of privilege for local users without administrative privileges to NT AUTHORITY\SYSTEM due to insufficient control during autoupdate.
local
low complexity
drweb CWE-347
7.8