CVE-2024-0674

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2024-0674
Privilege escalation vulnerability in Lamassu Bitcoin ATM Douro machines, in its 7.1 version, which could allow a local user to acquire root permissions by modifying the updatescript.js, inserting special code inside the script and creating the done.txt file. This would cause the watchdog process to run as root and execute the payload stored in the updatescript.js.

7.8 /10

CVSS v3 : HIGH

V3 Legend

Vector :

Exploitability : 1.8 / Impact : 5.9

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

References
Link Resource
https://www.incibe.es/en/incibe-cert/notices/aviso/multiple-vulnerabilities-lamassu-bitcoin-atm-douro-machines Third Party Advisory
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:lamassu:douro_firmware:7.1:*:*:*:*:*:*:*
cpe:2.3:h:lamassu:douro:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
cpe:2.3:o:lamassu:douro_ii_firmware:7.1:*:*:*:*:*:*:*
cpe:2.3:h:lamassu:douro_ii:-:*:*:*:*:*:*:*
History

08 Feb 2024, 16:39

Type Values Removed Values Added
CVSS v2 : unknown
v3 : 6.3 		v2 : unknown
v3 : 7.8
Summary
  • (es) Vulnerabilidad de escalada de privilegios en máquinas Lamassu Bitcoin ATM Douro, en su versión 7.1, que podría permitir a un usuario local adquirir permisos root modificando el updatescript.js, insertando un código especial dentro del script y creando el archivo done.txt. Esto haría que el proceso de vigilancia se ejecutara como root y ejecutarael payload almacenado en updatescript.js.
First Time Lamassu douro Ii
Lamassu douro Firmware
Lamassu douro
Lamassu douro Ii Firmware
Lamassu
References () https://www.incibe.es/en/incibe-cert/notices/aviso/multiple-vulnerabilities-lamassu-bitcoin-atm-douro-machines - () https://www.incibe.es/en/incibe-cert/notices/aviso/multiple-vulnerabilities-lamassu-bitcoin-atm-douro-machines - Third Party Advisory
CWE CWE-281
CPE cpe:2.3:h:lamassu:douro_ii:-:*:*:*:*:*:*:*
cpe:2.3:h:lamassu:douro:-:*:*:*:*:*:*:*
cpe:2.3:o:lamassu:douro_firmware:7.1:*:*:*:*:*:*:*
cpe:2.3:o:lamassu:douro_ii_firmware:7.1:*:*:*:*:*:*:*

30 Jan 2024, 13:15

Type Values Removed Values Added
New CVE
Information

Published : 2024-01-30 13:15

Updated : 2024-02-08 16:39

NVD link : CVE-2024-0674

Mitre link : CVE-2024-0674

CVE.ORG link : CVE-2024-0674

JSON object : View

Products Affected

lamassu

  • douro_ii
  • douro_ii_firmware
  • douro_firmware
  • douro
CWE
CWE-281

Improper Preservation of Permissions

CWE-269

Improper Privilege Management