CNNVD-202508-090 Information

CNNVD ID

CNNVD-202508-090

Related CVE

CVE-2025-8480

• CNNVD Published: 2025-08-01

Description (Chinese)

Alpine iLX-507是美国Alpine公司的一个多媒体接收器。 Alpine iLX-507存在路径遍历漏洞，该漏洞源于Tidal音乐流应用缺少输入验证，可能导致命令注入和远程代码执行。

Description (English)

Alpine iLX-507 is a multimedia receiver for Alpine, United States. Alpine iLX-507 has a loophole in its path, which stems from the lack of input validation of the Tidal music stream application, which may lead to command injection and remote code execution.

Hazard Level

Medium

Vulnerability Type

路径遍历

Affected Vendor

Alpine

Published

2025-08-01

Last Modified

2026-02-24

References

https://www.zerodayinitiative.com/advisories/ZDI-25-766/