CVE-2024-25091

Summary

Protection mechanism failure issue exists in RevoWorks SCVX prior to scvimage4.10.21_1013 (when using 'VirusChecker' or 'ThreatChecker' feature) and RevoWorks Browser prior to 2.2.95 (when using 'VirusChecker' or 'ThreatChecker' feature). If data containing malware is saved in a specific file format (eml, dmg, vhd, iso, msi), malware may be taken outside the sandboxed environment.

Affected Software

VendorProductVersion RangeStatus
J’s Communications Co., Ltd.RevoWorks SCVXprior to scvimage4.10.21_1013affected
J’s Communications Co., Ltd.RevoWorks Browserprior to 2.2.95affected

Weaknesses

  • Protection Mechanism Failure

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: yes
    • Technical Impact: total

References