[Japanese]

JVNDB-2024-000025

Protection mechanism failure in RevoWorks

Overview

RevoWorks SCVX and RevoWorks Browser provided by J's Communication Co., Ltd. enable users to execute web browsers in the sandboxed environment isolated from the client's local environment.
In the products, file exchange between the sandboxed environment and local environment is prohibited in principle, but by using the optional "VirusChecker" or "ThreatChecker" feature and changing the policy settings, files checked for viruses by these features in the sandboxed environment can be permitted to be downloaded to the local environment.

However, there is a vulnerability (CWE-693) in the products where malware detection is failed when data containing malware is saved in a specific file format (eml, dmg, vhd, iso, msi) in the sandboxed environment

J's Communication Co., Ltd. reported this vulnerability to IPA to notify users of its solution through JVN. JPCERT/CC and J's Communication Co., Ltd. coordinated under the Information Security Early Warning Partnership.
CVSS Severity (What is CVSS?)

CVSS V3 Severity:
Base Metrics 2.7 (Low) [IPA Score]
  • Attack Vector: Local
  • Attack Complexity: High
  • Privileges Required: None
  • User Interaction: Required
  • Scope: Changed
  • Confidentiality Impact: None
  • Integrity Impact: Low
  • Availability Impact: None
CVSS V2 Severity:
Base Metrics 4.3 (Medium) [IPA Score]
  • Access Vector: Network
  • Access Complexity: Medium
  • Authentication: None
  • Confidentiality Impact: None
  • Integrity Impact: Partial
  • Availability Impact: None
Affected Products


J's Communication Co., Ltd.
  • RevoWorks Browser prior to 2.2.95
  • RevoWorks SCVX prior to scvimage4.10.21_1013

Note that the products are affected by this vulnerability only when VirusChecker or ThreatChecker feature is being used.
Impact

If data containing malware is saved in a specific file format, malware may be taken outside the sandboxed environment.
Solution

[Update the software]
Update the software to the latest version according to the information provided by the developer.
The developer addressed the vulnerability in the following versions:

  • RevoWorks SCVX scvimage4.10.21_1013

  • RevoWorks Browser 2.2.95



[Apply the workaround]
Applying the following workaround may avoid the impact of this vulnerability.

  • Do not use "VirusChecker" and "ThreatChecker" features

Vendor Information

J's Communication Co., Ltd.
CWE (What is CWE?)

  1. No Mapping(CWE-Other) [IPA Evaluation]
CVE (What is CVE?)

  1. CVE-2024-25091
References

  1. JVN : JVN#35928117
Revision History

  • [2024/02/29]
      Web page was published

Date Public2024/02/29
Date First Published2024/02/29
Date Last Updated2024/02/29