CVE-2024-7825

Access of Resource Using Incompatible Type ('Type Confusion') (CWE-843)

Published: Oct 3, 2024 / Updated: 47d ago

010
CVSS 9.8EPSS 0.04%Critical
CVE info copied to clipboard

Summary

A Type Confusion vulnerability has been identified in Webroot SecureAnywhere - Web Shield on Windows, ARM, 64 bit, and 32 bit platforms, specifically in the wrUrl.Dll modules. This vulnerability allows for Functionality Misuse. The issue affects SecureAnywhere - Web Shield versions prior to 2.1.2.3.

Impact

This vulnerability could potentially allow an attacker to exploit the type confusion in the wrUrl.Dll modules, leading to functionality misuse. While the specific impacts are not detailed, type confusion vulnerabilities can often lead to memory corruption, code execution, or application crashes. Given that this affects the Web Shield component of SecureAnywhere, it could potentially compromise the web protection capabilities of the software, exposing users to web-based threats. The vulnerability has a CVSS v3.1 base score of 9.8, indicating a critical severity level. It can be exploited over the network, requires no user interaction, and has high impacts on confidentiality, integrity, and availability.

Exploitation

There is no evidence that a public proof-of-concept exists. There is no evidence of proof of exploitation at the moment.

Patch

A patch is available. The vulnerability has been addressed in Webroot SecureAnywhere - Web Shield version 2.1.2.3 and later.

Mitigation

1. Update Webroot SecureAnywhere - Web Shield to version 2.1.2.3 or later. 2. If immediate updating is not possible, consider temporarily disabling or isolating the affected Web Shield component until the update can be applied. 3. Monitor for any unusual activity or behavior in the Web Shield component. 4. Implement additional web security measures as a secondary layer of protection until the update is applied. 5. Keep all other security software and systems up to date to minimize potential attack vectors.

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Timeline

CVE Assignment

NVD published the first details for CVE-2024-7825

Oct 3, 2024 at 5:15 PM
First Article

Feedly found the first article mentioning CVE-2024-7825. See article

Oct 3, 2024 at 5:22 PM / Vulners.com RSS Feed
CVSS Estimate

Feedly estimated the CVSS score as HIGH

Oct 3, 2024 at 5:22 PM
CVSS Estimate

Feedly estimated the CVSS score as MEDIUM

Oct 3, 2024 at 7:53 PM
CVSS Estimate

Feedly estimated the CVSS score as HIGH

Oct 4, 2024 at 9:36 AM
EPSS

EPSS Score was set to: 0.04% (Percentile: 9.6%)

Oct 4, 2024 at 9:41 AM
CVSS

A CVSS base score of 9.8 has been assigned.

Oct 30, 2024 at 1:50 PM / nvd
Static CVE Timeline Graph

Affected Systems

Webroot/secureanywhere_web_shield
+null more

Patches

answers.webroot.com
+null more

News

CVE Alert: CVE-2024-7825 - https://www. redpacketsecurity.com/cve_aler t_cve-2024-7825/ # OSINT # ThreatIntel # CyberSecurity # cve_2024_7825
CVE-2024-7825
Critical Severity Description Access of Resource Using Incompatible Type ('Type Confusion') vulnerability in Webroot SecureAnywhere - Web Shield on Windows, ARM, 64 bit, 32 bit (wrUrl.Dll modules) allows Functionality Misuse.This issue affects SecureAnywhere - Web Shield: before 2.1.2.3. Read more at https://www.tenable.com/cve/CVE-2024-7825
CVE-2024-7825 | Webroot SecureAnywhere Web Shield prior 2.1.2.3 on Windows wrUrl.Dll type confusion
A vulnerability was found in Webroot SecureAnywhere Web Shield on Windows and classified as critical . This issue affects some unknown processing in the library wrUrl.Dll . The manipulation leads to type confusion. The identification of this vulnerability is CVE-2024-7825 . It is possible to launch the attack on the local host. There is no exploit available. It is recommended to upgrade the affected component.
NA - CVE-2024-7825 - Access of Resource Using Incompatible Type...
Access of Resource Using Incompatible Type ('Type Confusion') vulnerability in Webroot SecureAnywhere - Web Shield on Windows, ARM, 64 bit, 32 bit (wrUrl.Dll modules) allows Functionality...
CVE-2024-7825 Type confusion that can cause the WRSA.exe service to crash and generate a crash dump
Access of Resource Using Incompatible Type ('Type Confusion') vulnerability in Webroot SecureAnywhere - Web Shield on Windows, ARM, 64 bit, 32 bit (wrUrl.Dll modules) allows Functionality Misuse.This issue affects SecureAnywhere - Web Shield: before...
See 3 more articles and social media posts

CVSS V3.1

Attack Vector:Network
Attack Complexity:Low
Privileges Required:None
User Interaction:None
Scope:Unchanged
Confidentiality:High
Integrity:High
Availability Impact:High

Categories

Be the first to know about critical vulnerabilities

Collect, analyze, and share vulnerability reports faster using AI