ByteOS Network

Vulnerability Details :

CVE-2024-4978

Assigner Org ID-9119a7d8-5eab-497f-8521-727c672e3725

Published At-23 May, 2024 | 01:56

Updated At-21 Oct, 2025 | 23:05

Justice AV Solutions (JAVS) Viewer Installer Embedded Malicious Code Vulnerability

Justice AV Solutions (JAVS) Viewer installer contains a malicious version of ffmpeg.exe, named fffmpeg.exe (SHA256: 421a4ad2615941b177b6ec4ab5e239c14e62af2ab07c6df1741e2a62223223c4). When run, this creates a backdoor connection to a malicious C2 server.

EPSS History

Score

Latest Score

N/A

Percentile

Latest Percentile

N/A

▼Known Exploited Vulnerabilities (KEV)

cisa.gov

Vendor:

Justice AV Solutions

Product:Viewer

Added At:29 May, 2024

Due At:19 Jun, 2024

Justice AV Solutions (JAVS) Viewer Installer Embedded Malicious Code Vulnerability

Used in Ransomware

Unknown

CWE

CWE-506

Required Action:

Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.

Additional Notes:

Please follow the vendor’s instructions as outlined in the public statements at https://www.rapid7.com/blog/post/2024/05/23/cve-2024-4978-backdoored-justice-av-solutions-viewer-software-used-in-apparent-supply-chain-attack#remediation and https://www.javs.com/downloads; https://nvd.nist.gov/vuln/detail/CVE-2024-4978

▼Common Vulnerabilities and Exposures (CVE)

cve.org

Assigner:cisa-cg

Assigner Org ID:9119a7d8-5eab-497f-8521-727c672e3725

Published At:23 May, 2024 | 01:56

Updated At:21 Oct, 2025 | 23:05

▼CVE Numbering Authority (CNA)

Malicious Code in Justice AV Solutions (JAVS) Viewer

Justice AV Solutions Viewer Setup 8.3.7.250-1 contains a malicious binary when executed and is signed with an unexpected authenticode signature. A remote, privileged threat actor may exploit this vulnerability to execute of unauthorized PowerShell commands.

Affected Products

Vendor

Justice AV Solutions

Product

Viewer

Platforms

Windows

Default Status

unaffected

Versions

Affected

8.3.7.250

Problem Types

Type	CWE ID	Description
CWE	CWE-506	CWE-506 Embedded Malicious Code

Type: CWE

CWE ID: CWE-506

Description: CWE-506 Embedded Malicious Code

Metrics

Version	Base score	Base severity	Vector
3.1	8.4	HIGH	CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:H/I:H/A:H
4.0	8.7	HIGH	CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:A/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H

Version: 3.1

Base score: 8.4

Base severity: HIGH

Vector:

CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:H/I:H/A:H

Version: 4.0

Base score: 8.7

Base severity: HIGH

Vector:

CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:A/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H

Impacts

CAPEC ID	Description
CAPEC-122	CAPEC-122 Privilege Abuse

CAPEC ID: CAPEC-122

Description: CAPEC-122 Privilege Abuse

References

Hyperlink	Resource
https://twitter.com/2RunJack2/status/1775052981966377148	N/A
https://www.rapid7.com/blog/post/2024/05/23/cve-2024-4978-backdoored-justice-av-solutions-viewer-software-used-in-apparent-supply-chain-attack/	N/A
https://www.javs.com/downloads/	N/A

Hyperlink: https://twitter.com/2RunJack2/status/1775052981966377148

Resource: N/A

Hyperlink: https://www.rapid7.com/blog/post/2024/05/23/cve-2024-4978-backdoored-justice-av-solutions-viewer-software-used-in-apparent-supply-chain-attack/

Resource: N/A

Hyperlink: https://www.javs.com/downloads/

Resource: N/A

▼Authorized Data Publishers (ADP)

1. CISA ADP Vulnrichment

Affected Products

Vendor

javs

Product

viewer

CPEs

cpe:2.3:a:javs:viewer:8.3.7.250:*:*:*:*:*:*:*

Default Status

unknown

Versions

Affected

8.3.7.250

Metrics Other Info

kev

dateAdded:

2024-05-29

reference:

https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2024-4978

Timeline

Event	Date
CVE-2024-4978 added to CISA KEV	2024-05-29 00:00:00

Event: CVE-2024-4978 added to CISA KEV

Date: 2024-05-29 00:00:00

References

Hyperlink	Resource
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2024-4978	government-resource

Hyperlink: https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2024-4978

Resource:

government-resource

2. CVE Program Container

References

Hyperlink	Resource
https://twitter.com/2RunJack2/status/1775052981966377148	x_transferred
https://www.rapid7.com/blog/post/2024/05/23/cve-2024-4978-backdoored-justice-av-solutions-viewer-software-used-in-apparent-supply-chain-attack/	x_transferred
https://www.javs.com/downloads/	x_transferred

Hyperlink: https://twitter.com/2RunJack2/status/1775052981966377148

Resource:

x_transferred

Hyperlink: https://www.rapid7.com/blog/post/2024/05/23/cve-2024-4978-backdoored-justice-av-solutions-viewer-software-used-in-apparent-supply-chain-attack/

Resource:

x_transferred

Hyperlink: https://www.javs.com/downloads/

Resource:

x_transferred

▼National Vulnerability Database (NVD)

nvd.nist.gov

Source:9119a7d8-5eab-497f-8521-727c672e3725

Published At:23 May, 2024 | 02:15

Updated At:24 Oct, 2025 | 13:48

CISA Catalog

Date Added	Due Date	Vulnerability Name	Required Action
2024-05-29	2024-06-19	Justice AV Solutions (JAVS) Viewer Installer Embedded Malicious Code Vulnerability	Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.

Date Added: 2024-05-29

Due Date: 2024-06-19

Vulnerability Name: Justice AV Solutions (JAVS) Viewer Installer Embedded Malicious Code Vulnerability

Required Action: Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.

Metrics

Type	Version	Base score	Base severity	Vector
Secondary	4.0	8.7	HIGH	CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:A/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Secondary	3.1	8.4	HIGH	CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:H/I:H/A:H
Primary	3.1	8.4	HIGH	CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:H/I:H/A:H

Type: Secondary

Version: 4.0

Base score: 8.7

Base severity: HIGH

Vector:

CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:A/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Type: Secondary

Version: 3.1

Base score: 8.4

Base severity: HIGH

Vector:

CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:H/I:H/A:H

Type: Primary

Version: 3.1

Base score: 8.4

Base severity: HIGH

Vector:

CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:H/I:H/A:H

CPE Matches

javs>>javs_viewer>>8.3.7.250

cpe:2.3:a:javs:javs_viewer:8.3.7.250:*:*:*:*:*:*:*

Weaknesses

CWE ID	Type	Source
CWE-506	Secondary	9119a7d8-5eab-497f-8521-727c672e3725
NVD-CWE-Other	Primary	nvd@nist.gov

CWE ID: CWE-506

Type: Secondary

Source: 9119a7d8-5eab-497f-8521-727c672e3725

CWE ID: NVD-CWE-Other

Type: Primary

Source: nvd@nist.gov

References

Hyperlink	Source	Resource
https://twitter.com/2RunJack2/status/1775052981966377148	9119a7d8-5eab-497f-8521-727c672e3725	Third Party Advisory
https://www.javs.com/downloads/	9119a7d8-5eab-497f-8521-727c672e3725	Product Broken Link
https://www.rapid7.com/blog/post/2024/05/23/cve-2024-4978-backdoored-justice-av-solutions-viewer-software-used-in-apparent-supply-chain-attack/	9119a7d8-5eab-497f-8521-727c672e3725	Exploit Third Party Advisory
https://twitter.com/2RunJack2/status/1775052981966377148	af854a3a-2127-422b-91ae-364da2661108	Third Party Advisory
https://www.javs.com/downloads/	af854a3a-2127-422b-91ae-364da2661108	Product Broken Link
https://www.rapid7.com/blog/post/2024/05/23/cve-2024-4978-backdoored-justice-av-solutions-viewer-software-used-in-apparent-supply-chain-attack/	af854a3a-2127-422b-91ae-364da2661108	Exploit Third Party Advisory
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2024-4978	134c704f-9b21-4f2e-91b3-4a467353bcc0	US Government Resource

Hyperlink: https://twitter.com/2RunJack2/status/1775052981966377148

Source: 9119a7d8-5eab-497f-8521-727c672e3725

Resource:

Third Party Advisory

Hyperlink: https://www.javs.com/downloads/

Source: 9119a7d8-5eab-497f-8521-727c672e3725

Resource:

Product

Broken Link

Hyperlink: https://www.rapid7.com/blog/post/2024/05/23/cve-2024-4978-backdoored-justice-av-solutions-viewer-software-used-in-apparent-supply-chain-attack/

Source: 9119a7d8-5eab-497f-8521-727c672e3725

Resource:

Exploit

Third Party Advisory

Hyperlink: https://twitter.com/2RunJack2/status/1775052981966377148

Source: af854a3a-2127-422b-91ae-364da2661108

Resource:

Third Party Advisory

Hyperlink: https://www.javs.com/downloads/

Source: af854a3a-2127-422b-91ae-364da2661108

Resource:

Product

Broken Link

Hyperlink: https://www.rapid7.com/blog/post/2024/05/23/cve-2024-4978-backdoored-justice-av-solutions-viewer-software-used-in-apparent-supply-chain-attack/

Source: af854a3a-2127-422b-91ae-364da2661108

Resource:

Exploit

Third Party Advisory

Hyperlink: https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2024-4978

Source: 134c704f-9b21-4f2e-91b3-4a467353bcc0

Resource:

US Government Resource

CVE-2024-4978

Credits

Justice AV Solutions (JAVS) Viewer Installer Embedded Malicious Code Vulnerability

Vendors

Products

Metrics (CVSS)

Weaknesses

Attack Patterns

Solution/Workaround

References

EPSS History

Score

Latest Score

N/A

Percentile

Latest Percentile

N/A

Stakeholder-Specific Vulnerability Categorization (SSVC)

Justice AV Solutions (JAVS) Viewer Installer Embedded Malicious Code Vulnerability

Used in Ransomware

Unknown

CWE

Required Action:

Additional Notes:

Affected Products

Affected

Problem Types

Metrics

Metrics Other Info

Impacts

Solutions

Configurations

Workarounds

Exploits

Credits

Timeline

Replaced By

Rejected Reason

References

Affected Products

Affected

Metrics

Metrics Other Info

Impacts

Solutions

Configurations

Workarounds

Exploits

Credits

Timeline

Replaced By

Rejected Reason

References

Affected Products

Metrics

Metrics Other Info

Impacts

Solutions

Configurations

Workarounds

Exploits

Credits

Timeline

Replaced By

Rejected Reason

References

CISA Catalog

Metrics

CPE Matches

Weaknesses

Evaluator Description

Evaluator Impact

Evaluator Solution

Vendor Statements

References

Change History

Similar CVEs