CNNVD-202512-3934 Information

CNNVD ID

CNNVD-202512-3934

Related CVE

CVE-2023-53962

• CNNVD Published: 2025-12-22

Description (Chinese)

Sound4 IMPACT是法国Sound4公司的一款专业广播音频处理器。 Sound4 IMPACT v2.x版本存在路径遍历漏洞，该漏洞源于upgfile参数存在目录遍历，可能导致任意文件写入。

Description (English)

Sound4 IMPACT is a specialized radio audio processor for Sound4 in France. The Sound4 IMPACT v2.x version has a loophole in the path, which stems from the existence of a directory of the pugfile parameters, which may lead to the writing of any file.

Hazard Level

Medium

Vulnerability Type

路径遍历

Affected Vendor

Sound4

Published

2025-12-22

Last Modified

2026-02-24

References

https://www.sound4.com/ https://web.archive.org/web/20221207074555/ https://www.exploit-db.com/exploits/51172 https://www.vulncheck.com/advisories/sound-impactfirstpulseeco-x-unauthenticated-directory-traversal-file-write https://www.zeroscience.mk/en/vulnerabilities/ZSL-2022-5730.php