CVE-2024-4978

Name of the Vulnerable Software and Affected Versions: Justice AV Solutions Viewer Setup version 8.3.7.250-1

Description: The issue concerns a malicious binary contained in the Justice AV Solutions Viewer Setup when executed, which is signed with an unexpected authenticode signature. A remote, privileged threat actor may exploit this to execute unauthorized PowerShell commands. The vulnerability has been reportedly exploited by hackers to gain remote control, particularly in courtroom video software used for legal recordings.

Recommendations: For Justice AV Solutions Viewer Setup version 8.3.7.250-1, consider removing the malicious binary to prevent the execution of unauthorized PowerShell commands. As a temporary workaround, restrict the execution of PowerShell commands from the affected setup until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.