PT-2024-38610 · Webroot · Webroot Secureanywhere - Web Shield
Exodus Intelligence
·
Published
2024-10-03
·
Updated
2024-10-30
·
CVE-2024-7825
CVSS v3.1
9.8
Critical
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Webroot SecureAnywhere - Web Shield versions prior to 2.1.2.3
Description
The issue is related to a 'Type Confusion' vulnerability in the wrUrl.Dll modules of Webroot SecureAnywhere - Web Shield, allowing functionality misuse. This vulnerability affects Webroot SecureAnywhere - Web Shield on various Windows systems, including ARM, 64-bit, and 32-bit architectures.
Recommendations
For versions prior to 2.1.2.3, update to version 2.1.2.3 or later to resolve the issue. As a temporary workaround, consider restricting access to the wrUrl.Dll modules until a patch is applied.
Fix
Type Confusion
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Webroot Secureanywhere - Web Shield