SCHUTZWERK-SA-2024-001: Privilege Escalation via Service Binary Hijacking in Vivavis HIGH-LEIT (CVE-2024-38456)

Read Time:21 Second

Posted by David Brown via Fulldisclosure on Sep 02

Title
=====

SCHUTZWERK-SA-2024-001: Privilege Escalation via Service Binary
Hijacking in Vivavis HIGH-LEIT

Status
======

PUBLISHED

Version
=======

1.0

CVE reference
=============

CVE-2024-38456

Link
====

https://www.schutzwerk.com/advisories/schutzwerk-sa-2024-001/

Text-only version:
https://www.schutzwerk.com/advisories/SCHUTZWERK-SA-2024-001.txt

Affected products/vendor
========================

HIGH-LEIT by VIVAVIS AG[0]. Version 4…

DSA-5883-1 mercurial – security update

A cross-site scripting vulnerability was discovered in hgweb, the integrated stand-alone web interface of the Mercurial version control system. https://security-tracker.debian.org/tracker/DSA-5883-1...

March 22, 2025

A Vulnerability in Google Chrome Could Allow for Arbitrary Code Execution

A vulnerability has been discovered in Google Chrome, which could allow for arbitrary code execution. Successful exploitation of this vulnerability could allow for arbitrary code execution...

March 21, 2025

chromium-134.0.6998.117-1.fc41

FEDORA-2025-1afc565e2b Packages in this update: chromium-134.0.6998.117-1.fc41 Update description: Update to 134.0.6998.117 * Critical CVE-2025-2476: Use after free in Lens Read...

March 21, 2025

chromium-134.0.6998.117-1.el10_1

FEDORA-EPEL-2025-ac7714f6e5 Packages in this update: chromium-134.0.6998.117-1.el10_1 Update description: Update to 134.0.6998.117 * Critical CVE-2025-2476: Use after free in Lens Read...

March 21, 2025

chromium-134.0.6998.117-1.fc40

FEDORA-2025-bee62eff98 Packages in this update: chromium-134.0.6998.117-1.fc40 Update description: Update to 134.0.6998.117 * Critical CVE-2025-2476: Use after free in Lens Read...

March 21, 2025

chromium-134.0.6998.117-1.fc42

FEDORA-2025-3ccee236a3 Packages in this update: chromium-134.0.6998.117-1.fc42 Update description: Update to 134.0.6998.117 * Critical CVE-2025-2476: Use after free in Lens Read...

March 21, 2025

Friday Squid Blogging: A New Explanation of Squid Camouflage

Arrests in Tap-to-Pay Scheme Powered by Phishing

My Writings Are in the LibGen AI Training Corpus

Albabat Ransomware Evolves to Target Linux and macOS

Cybercriminals Exploit CheckPoint Antivirus Driver in Malicious Campaign

NCSC Releases Post-Quantum Cryptography Timeline

Attackers Use Fake CAPTCHAs to Deploy Lumma Stealer RAT

Active Lumma Stealer Campaign Impacting U.S. SLTTs

BlackLock ransomware: What you need to know

SCHUTZWERK-SA-2024-001: Privilege Escalation via Service Binary Hijacking in Vivavis HIGH-LEIT (CVE-2024-38456)

DSA-5883-1 mercurial – security update

A Vulnerability in Google Chrome Could Allow for Arbitrary Code Execution

chromium-134.0.6998.117-1.fc41

chromium-134.0.6998.117-1.el10_1

chromium-134.0.6998.117-1.fc40

chromium-134.0.6998.117-1.fc42