Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The Sound4 PULSE-ECO AES67 1.22 web-based management interface is vulnerable to Remote Code Execution (RCE) via a malicious firmware update package. The update mechanism fails to validate the integrity of manual.sh, allowing an attacker to inject arbitrary commands by modifying this script and repackaging the firmware.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Sound4 PULSE-ECO AES67 安全漏洞
Vulnerability Description
Sound4 PULSE-ECO AES67是法国Sound4公司的一款广播电台音频处理设备。 Sound4 PULSE-ECO AES67 1.22版本存在安全漏洞,该漏洞源于固件更新机制未验证manual.sh完整性,可能导致远程代码执行。
CVSS Information
N/A
Vulnerability Type
N/A