CVE-2023-53961

Name of the Vulnerable Software and Affected Versions SOUND4 IMPACT/FIRST/PULSE/Eco versions 2.x

Description The software contains a cross-site request forgery issue that may allow attackers to perform administrative actions without user consent. Attackers can create malicious web pages that submit HTTP requests to the radio processing interface, potentially triggering unintended administrative operations when a logged-in user visits the page.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.