PT-2025-54233 · Ping.Php+2 · Php-Ping+3
Published
2025-12-30
·
Updated
2025-12-31
·
CVE-2022-50695
CVSS v3.1
7.5
High
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
SOUND4 IMPACT/FIRST/PULSE/Eco versions 2.x
Description
The software contains a network issue that allows unauthenticated attackers to send ICMP signals to arbitrary hosts through network command scripts. Attackers can abuse
ping.php, traceroute.php, and dns.php to generate network flooding attacks targeting external hosts.Recommendations
Versions prior to 2.x should be used.
Exploit
Fix
Allocation of Resources Without Limits
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Sound4 Impact
Dns.Php
Php-Ping
Traceroute.Php