CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2020-5755

Webroot endpoint agents prior to version v9.0.28.48 did not protect the "%PROGRAMDATA%\WrData\PKG" directory against renaming. This could allow attackers to trigger a crash or wait upon Webroot service restart to rewrite and hijack dlls in this directory for privilege escalation.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 12.9%

CVSS Severity

CVSS v3 Score 7.8

CVSS v2 Score 6.9

References

https://www.tenable.com/security/research/tra-2020-36
https://www.tenable.com/security/research/tra-2020-36

Products affected by CVE-2020-5755

Webroot » Endpoint Agents » Version: Any

cpe:2.3:a:webroot:endpoint_agents:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-5755

Products

Pricing

Contact Us