VIVAVIS – HIGH-LEIT RCE Vulnerability CVE-2024-38456
2024-09-02
In the course of a penetration test, Schutzwerk GmbH have discovered an RCE vulnerability in the HIGH-LEIT SCADA system from VIVAVIS. This vulnerability enables logged-on, non-privileged users of HIGH-LEIT to execute any given code with local system rights. To exploit this vulnerability, the “HL-InstallService” Windows service must be actively running.
The following HIGH-LEIT versions are affected:
HIGH-LEIT 4 Version >=4.25.00.00 and <= 4.25.01.01 (HL-NT)
HIGH-LEIT 5 Version == 5.08.01.03 (HL-XW)
All affected HIGH-LEIT 4 customers have already installed the published patch, version 4.25.01.02. For all affected HIGH-LEIT 5 customers, the necessary mitigations have been implemented via GPO; the release of the patched version 5.8.01.04 is planned for 31 October 2024.
We’d like to thank Schutzwerk GmbH for their helpful cooperation and constructive approach in accordance with their Responsible Disclosure Policy.
For further questions, please contact our Customer Support.
Peter Schwark
RSS-Feed
Our RSS feed always keeps you up to date! This way, you’ll receive same-day notification when a new article has been posted to the IT Security Bulletin. Just enter the following link in your feed reader: https://www.vivavis.com/en/category/it-security-en/feed/
You can find out how to integrate the RSS feed into Outlook here.
