CNNVD-202511-2217 Information

CNNVD ID

CNNVD-202511-2217

Related CVE

CVE-2025-63220

• CNNVD Published: 2025-11-19

Description (Chinese)

Sound4 FIRST是法国Sound4公司的一款广播用的音频处理器。 Sound4 FIRST存在安全漏洞，该漏洞源于固件更新机制未验证manual.sh完整性，可能导致远程代码执行。

Description (English)

Sound4 FIRST is an audio processor for broadcasting by Sound4 France. Sound4FIRST has a security loophole, which stems from the fact that the solidware update mechanism does not validate the manual.sh integrity, which may lead to remote code implementation.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Sound4

Published

2025-11-19

Last Modified

2026-02-24

References

https://github.com/shiky8/my–cve-vulnerability-research/tree/main/CVE-2025-63220_Sound4%20FIRST%20RCE https://www.sound4helpdesk.com/ https://www.sound4helpdesk.com/first-downloads/ https://access.redhat.com/security/cve/cve-2025-63220