CVE-2022-50792

Name of the Vulnerable Software and Affected Versions SOUND4 IMPACT/FIRST/PULSE/Eco versions 2.x and below

Description The software contains an unauthenticated file disclosure issue that allows remote attackers to access sensitive system files. Attackers can exploit the issue by manipulating the file GET parameter to disclose arbitrary files on the affected device.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.