CVE-2024-40895

Published: Jul 30, 2024

Modified: Aug 2, 2024

PUBLISHED

Description

FFRI AMC versions 3.4.0 to 3.5.3 and some OEM products that implement/bundle FFRI AMC versions 3.4.0 to 3.5.3 allow a remote unauthenticated attacker to execute arbitrary OS commands when certain conditions are met in an environment where the notification program setting is enabled and the executable file path is set to a batch file (.bat) or command file (.cmd) extension.

Vendor	Product	Versions
FFRI Security, Inc.	FFRI AMC	affected `3.4.0 to 3.5.3`
NEC Corporation	FFRI AMC for ActSecure χ	affected `3.4.0 to 3.5.3`
Sky Co., Ltd.	EDR Plus Pack	affected `Bundled FFRI AMC versions 3.4.0 to 3.5.3`

References

https://www.ffri.jp/assets/files/other_docs/20240729.pdf

https://www.support.nec.co.jp/View.aspx?id=3140109694

https://www.skyseaclientview.net/news/240729_01/

https://jvn.jp/en/jp/JVN26734798/

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2024-40895

Description

Affected Products

References