JAVS AV Software Security Update Advisory

May 31 2024

Overview

An update has been released to address vulnerabilities in JAVS AV software. Users of affected versions are advised to update to the latest version.

Affected Products

Justice AV Solutions Viewer Setup 8.3.7.250-1 version

Resolved Vulnerabilities

Software containing a forged signature and malicious binary, when executed, could allow remote threat actors to execute unauthorized power shell commands (CVE-2024-4978)

Vulnerability Patches

Vulnerability patches have been made available in the latest updates. Please follow the instructions on the Referenced Sites to update to the latest Vulnerability Patches version.

Justice AV Solutions Viewer Setup version 8.3.9

Referenced Sites

[1] CVE-2024-4978 Detail

https://nvd.nist.gov/vuln/detail/CVE-2024-4978

[2] JAVS AV Software Downloads

https://www.javs.com/downloads/

[3] CVE-2024-4978 Malicious Code in Justice AV Solutions (JAVS) Viewer

https://vulners.com/cvelist/CVELIST:CVE-2024-4978

[4] JAVS, Software Widely Used in the Legal Community, Has Fallen Victim to Supply Chain Attack

https://m.boannews.com/html/detail.html?idx=130049

JAVS AV Software Security Update Advisory

Overview

Affected Products

Resolved Vulnerabilities

Vulnerability Patches

Referenced Sites

Google Chrome Browser (125.0.6422.141/.142) Security Update Advisory

WordPress Data Table Plugin Security Update Advisory

Overview

Affected Products

Resolved Vulnerabilities

Vulnerability Patches

Referenced Sites

Tags:

Google Chrome Browser (125.0.6422.141/.142) Security Update Advisory

WordPress Data Table Plugin Security Update Advisory