Primary

Context

SOUND4 Impact/Pulse/First/Eco Conditional Command Injection Vulnerability in ping.php

Vulnerability

A conditional command injection vulnerability exists in SOUND4 IMPACT, FIRST, PULSE, and Eco versions through 2.x. This vulnerability allows local authenticated users to create malicious files in the /tmp directory. Unauthenticated attackers can execute commands by sending an HTTP POST request to the vulnerable ping.php script, which activates the malicious file and subsequently deletes it.

Impact

Exploitation of this vulnerability could lead to unauthorized command execution on the system.

Reproduction

To reproduce this vulnerability, a local authenticated user can create a file in the /tmp directory with a .ping.pid extension, containing malicious commands. After the file is created, an external unauthenticated attacker can execute the commands by sending a single HTTP POST request to ping.php, including the 'ping_host' and 'networkid' parameters. The executed commands will be processed, and the file will be deleted afterward.

Added: Dec 30, 2025, 11:44 PM

Updated: Dec 30, 2025, 11:44 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

10.0

exploitability

4.6

remediation

0.0

relevance

1.8

threat

6.5

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

10.0

exploitability

4.6

remediation

0.0

relevance

1.8

threat

6.5

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

SOUND4 Impact/Pulse/First/Eco Conditional Command Injection Vulnerability in ping.php

Vulnerability

Impact

Reproduction

Affected Products

SOUND4 Impact

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating