CNNVD-202512-3932 Information

CNNVD ID

CNNVD-202512-3932

Related CVE

CVE-2023-53963

• CNNVD Published: 2025-12-22

Description (Chinese)

Sound4 IMPACT是法国Sound4公司的一款专业广播音频处理器。 Sound4 IMPACT v2.x版本存在操作系统命令注入漏洞，该漏洞源于password参数存在OS命令注入，可能导致远程命令执行。

Description (English)

Sound4 IMPACT is a specialized radio audio processor for Sound4 in France. The Sound4 IMPACT v2.x version contains a gap in the operating system command, which arises from the OS injection of the password parameter, which may lead to remote command execution.

Hazard Level

Low

Vulnerability Type

操作系统命令注入

Affected Vendor

Sound4

Published

2025-12-22

Last Modified

2026-02-24

References

https://www.sound4.com/ https://web.archive.org/web/20221207074555/ https://www.exploit-db.com/exploits/51173 https://www.vulncheck.com/advisories/sound-impactfirstpulseeco-x-unauthenticated-remote-command-injection https://www.zeroscience.mk/en/vulnerabilities/ZSL-2022-5738.php