GCVE - cpe:2.3:o:sound4:impact_firmware:4.1.102:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:o:sound4:impact_firmware:4.1.102:*:*:*:*:*:*:*

part: o version: 4.1.102 update: *

Vendor	Sound4 (`d55b00e8-a014-56db-a147-2b7b0fb66454`)
Product	Impact Firmware (`e5f1ed96-39d1-5662-983e-220a4b8edd38`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2023-53965`	vulnerable	2026-06-03 14:53:46.135675	SOUND4 Server Service 4.1.102 Local Privilege Escalation via Unquoted Service Path HIGH (8.4) SOUND4 Server Service 4.1.102 contains an unquoted service path vulnerability that allows local non-privileged users to potentially execute code with elevated system privileges. Attackers can exploit the unquoted binary path by inserting malicious code in the system root path that could execute with LocalSystem privileges during service startup. Published: 2025-12-22T21:35:29.980Z Updated: 2025-12-22T22:05:26.914Z Open on db.gcve.eu Reference links https://www.exploit-db.com/exploits/51167 https://web.archive.org/web/20221207074555/https://www.sound4.com/ https://www.zeroscience.mk/en/vulnerabilities/ZSL-2022-5721.php https://www.vulncheck.com/advisories/sound-server-service-local-privilege-escalation-via-unquoted-service-path	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.