Security Advisory

CVE-2023-53964

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-12-22 21:37:17
Last updated 2026-01-16 19:00:17
Assigner VulnCheck
State PUBLISHED

Description

SOUND4 IMPACT/FIRST/PULSE/Eco v2.x contains an unauthenticated vulnerability in the /usr/cgi-bin/restorefactory.cgi endpoint that allows remote attackers to reset device configuration. Attackers can send a POST request to the endpoint with specific data to trigger a factory reset and bypass authentication, gaining full system control.