CNNVD-202509-3550 Information

CNNVD ID

CNNVD-202509-3550

Related CVE

CVE-2025-43953

• CNNVD Published: 2025-09-22

Description (Chinese)

2wcom IP-4c是德国2wcom公司的一款音频编解码设备。 2wcom IP-4c 2.16版本存在安全漏洞，该漏洞源于web界面允许管理员和经理用户在TCP/IP屏幕上通过ping或traceroute字段以root身份执行任意代码。

Description (English)

2wcom IP-4c is an audio decoded device by 2wcom Germany. 2wcom IP-4c 2.16 has a security loophole, which originates from the web interface, which allows administrators and manager users to execute any code on the TCP/IP screen by ping or traceroute field as root.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

2wcom

Published

2025-09-22

Last Modified

2026-02-24

References

https://github.com/shiky8/my–cve-vulnerability-research/tree/main/CVE-2025-43953 https://2wcom.com https://access.redhat.com/security/cve/cve-2025-43953

Patch

https://www.2wcom.com/products/ip-4c/