CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2024-4978

Justice AV Solutions Viewer Setup 8.3.7.250-1 contains a malicious binary when executed and is signed with an unexpected authenticode signature. A remote, privileged threat actor may exploit this vulnerability to execute of unauthorized PowerShell commands.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.242

EPSS Ranking 95.8%

CVSS Severity

CVSS v3 Score 8.4

Proposed Action

Justice AV Solutions (JAVS) Viewer installer contains a malicious version of ffmpeg.exe, named fffmpeg.exe (SHA256: 421a4ad2615941b177b6ec4ab5e239c14e62af2ab07c6df1741e2a62223223c4). When run, this creates a backdoor connection to a malicious C2 server.

Ransomware Campaign

Unknown

References

https://twitter.com/2RunJack2/status/1775052981966377148
https://www.javs.com/downloads/
https://www.rapid7.com/blog/post/2024/05/23/cve-2024-4978-backdoored-justice-av-solutions-viewer-software-used-in-apparent-supply-chain-attack/
https://twitter.com/2RunJack2/status/1775052981966377148
https://www.javs.com/downloads/
https://www.rapid7.com/blog/post/2024/05/23/cve-2024-4978-backdoored-justice-av-solutions-viewer-software-used-in-apparent-supply-chain-attack/

Products affected by CVE-2024-4978

Javs » Javs Viewer » Version: 8.3.7.250

cpe:2.3:a:javs:javs_viewer:8.3.7.250

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-4978

Products

Pricing

Contact Us