CVE-2020-5754
First published: Mon Jun 15 2020(Updated: )
Webroot endpoint agents prior to version v9.0.28.48 allows remote attackers to trigger a type confusion vulnerability over its listening TCP port, resulting in crashing or reading memory contents of the Webroot endpoint agent.
Credit: vulnreport@tenable.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Webroot endpoint agents | <9.0.28.48 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2020-5754?
CVE-2020-5754 has a critical severity rating with a score of 9.1.
How do I fix CVE-2020-5754?
To mitigate CVE-2020-5754, upgrade Webroot endpoint agents to version v9.0.28.48 or later.
What impact does CVE-2020-5754 have on my system?
CVE-2020-5754 can lead to system crashes or unauthorized memory access due to type confusion vulnerabilities.
Which versions of Webroot endpoint agents are affected by CVE-2020-5754?
Webroot endpoint agents prior to version v9.0.28.48 are vulnerable to CVE-2020-5754.
What type of vulnerability is CVE-2020-5754 classified as?
CVE-2020-5754 is classified as a type confusion vulnerability, which can lead to crashes and memory leaks.
- collector/nvd-index
- vendor/webroot
- product/endpoint agents
- canonical/webroot endpoint agents