关键漏洞信息 Advisory ID: ZSL-2022-5723 Type: Local/Remote Impact: Privilege Escalation, Security Bypass Risk: 5/5 Release Date: 14.12.2022 Summary The SOUND4 IMPACT/First/Pulse/Eco <=2.x Authorization Bypass vulnerability arises from insecure direct object references, allowing attackers to bypass authorization and access hidden resources, executing privileged functionalities. Description The vulnerability exists when the application provides direct access to objects based on user-supplied input. This enables attackers to bypass security checks and access restricted resources. Vendor SOUND4 Ltd: https://www.sound4.com Affected Versions FM/HD Radio Processing: Impact/Pulse/First (Version 2: 1.1/2.15), Impact/Pulse/First (Version 1: 2.1/1.69), Impact/Pulse Eco 1.16 Voice Processing: BigVoice4 1.2, BigVoice2 1.30 Web-Audio Streaming: Stream 1.1/2/4.29 Watermarking: WM2 (Kantar Media) 1.11 Tested On Apache/2.4.25 (Unix) OpenSSL/1.0.2k PHP/7.1.1 GNU/Linux 5.10.43 (armv7l), 4.9.228 (armv7l) Vendor Status [26.09.2022] Vulnerability discovered. [30.09.2022] Vendor contacted. [13.12.2022] No response from the vendor. [14.12.2022] Public security advisory released. PoC sound4_idor.txt References https://packetstormsecurity.com/files/170250/SOUND4-IMPACT-FIRST-PULSE-Eco-2.x-Authorization-Bypass.html https://cxsecurity.com/issue/WLB-2022120031 https://www.exploit-db.com/exploits/51169 https://exchange.xforce.ibmcloud.com/vulnerabilities/247955 https://www.vulncheck.com/advisories/sound-impactfirstpulseeco-x-authorization-bypass-via-insecure-object-references https://www.cve.org/CVERecord?id=CVE-2023-53955