CVE-2022-50696

Name of the Vulnerable Software and Affected Versions SOUND4 IMPACT/FIRST/PULSE/Eco versions 2.x and below

Description The software includes hardcoded credentials within its server binaries, which cannot be altered through standard device procedures. This allows attackers to gain unauthorized access to the device on both Linux and Windows systems without any user interaction.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.