Medium severity6.3NVD Advisory· Published Jan 30, 2024· Updated Jun 17, 2026
CVE-2024-0674
CVE-2024-0674
Description
Privilege escalation vulnerability in Lamassu Bitcoin ATM Douro machines, in its 7.1 version, which could allow a local user to acquire root permissions by modifying the updatescript.js, inserting special code inside the script and creating the done.txt file. This would cause the watchdog process to run as root and execute the payload stored in the updatescript.js.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: = 7.1
- Lamassu/Bitcoin ATM Douro machinesv5Range: 7.1
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.